#84: Clarify that root certs have empty certificate_chain
Suggested new text for 3.1 Log Entries in bis:
{{{{
"certificate_chain" is a chain of additional certificates required to
verify the end-entity certificate. If present, the first certificate
MUST certify the end-entity certificate. Each following certificate
MUST directly certify the one preceding it. The final certificate
MUST either be, or be issued by, a root certificate accepted by the
log. A root certificate has an empty certificate_chain.
}}}}
See thread "Empty extra_data" for details.
--
-------------------------+-------------------------------------------------
Reporter: | Owner: draft-ietf-trans-
[email protected] | [email protected]
Type: enhancement | Status: new
Priority: minor | Milestone:
Component: rfc6962-bis | Version:
Severity: - | Keywords:
-------------------------+-------------------------------------------------
Ticket URL: <http://trac.tools.ietf.org/wg/trans/trac/ticket/84>
trans <http://tools.ietf.org/trans/>
_______________________________________________
Trans mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/trans
