#4: Should we sign TBS for Certificates?
Comment (by [email protected]): IIRC Rob Stradling suggested this is a good idea to avoid the issue of logs being susceptible to spamming by varying the signature algorithm specifier in the signature part of the X.509 certificate (so it does not match the one in the TBSCertificate part). -- ------------------------------+------------------------------ Reporter: [email protected] | Owner: [email protected] Type: defect | Status: new Priority: major | Milestone: Component: rfc6962-bis | Version: Severity: - | Resolution: Keywords: | ------------------------------+------------------------------ Ticket URL: <http://trac.tools.ietf.org/wg/trans/trac/ticket/4#comment:1> trans <http://tools.ietf.org/trans/> _______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
