Hi,
I have a few questions about the log metadata
(https://tools.ietf.org/html/draft-ietf-trans-rfc6962-bis-10#section-9.1):
If (1) a log issues STH A, (2) the log is compromised, (3) the log
issues STH B, and (4) the compromise is detected and determined to have
occurred between #1 and #3, should the log's Final STH be A or B? If I
understand correctly, setting the Final STH to A would invalidate any
inclusion proofs from after the compromise, but B is technically the
last STH issued by the log.
If a log ceases operation (and sets a Final STH) due to a planned
algorithm rollover, for how long are the log's existing SCTs and
inclusion proofs valid?
The Maximum Chain Length appears to be a restriction for submissions
going forward, but is it also a commitment to the maximum length of
chains logged in the past? I.e., should a relying party reject an SCT
that applies to (or is embedded in) a certificate with a chain of length
greater than the log's specified Maximum Chain Length?
--
David Eric Mandelberg / dseomn
http://david.mandelberg.org/
_______________________________________________
Trans mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/trans
