"the log's root"? Root certificate?
Each log has a raw public/private key, not a root certificate.
Or do you mean something else?
On 24/04/14 15:56, Salz, Rich wrote:
ØThere's already been a fairly extensive discussion on this, perhaps
still not resolved. But my position continues to be that the TLS client
needs to know various things about the log - public key, URL, MMD. I
don't see the problem in those things being communicated in a data
structure (e.g. in JSON).
.. and crypto mechanisms being used. At IMHO, this is not resolved.
ØIndeed we will shortly be defining such a structure for Chrome's valid
logs. Whether this should form part of the RFC is up to the WG.
Yes, at least there. I think the structure should be embedded in the
log’s root, for simplicity of deployment evolution, and aiding
after-the-fact auditing.
/r$
--
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
_______________________________________________
Trans mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/trans
