I think perhaps I am making too much of the problem in the signature case. Just be ready to switch to PQ PKIs and do it when a CRQC appears, and otherwise take your time switching. The biggest problem here lies in agile trust root management <--- this is hard to do.
Nico -- _______________________________________________ TLS mailing list -- [email protected] To unsubscribe send an email to [email protected]
