#146: SCT Feedback doesn't account for privacy-sensitive EE certs I think [https://tools.ietf.org/html/draft-ietf-trans- gossip-01#section-7.1.3 Section 7.1.3 of Gossip]'s requirement that "the 'x509_chain' element MUST contain at least the leaf certificate" would leak private information in some cases. SCT Feedback should probably be extended to handle [https://tools.ietf.org/html/draft-ietf-trans- rfc6962-bis-11#section-4.2 name redaction] and [https://tools.ietf.org/html/draft-ietf-trans-rfc6962-bis-11#section-4.3 name-constrained intermediate CAs].
-- -------------------------+------------------------------------------------- Reporter: | Owner: draft-ietf-trans-threat- [email protected] | [email protected] Type: defect | Status: new Priority: major | Milestone: Component: gossip | Version: Severity: - | Keywords: -------------------------+------------------------------------------------- Ticket URL: <https://trac.tools.ietf.org/wg/trans/trac/ticket/146> trans <https://tools.ietf.org/trans/> _______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
