Ben,
I think on balance it should stay. My reasoning is that it is unclear
whether it will be used or not. Implementations that decide not to use
it are not burdened by the specification. Adding it back later is
substantial pain. If it really turns out to be useless, it can be
removed in a later iteration.
Support for redacted certs seems to be optional for CAs (as per 4.2.1).
However, 10.2.2 seems to mandate support for redaction in TLS Clients.
Thus it would seem that TLS Clients are burdened by redaction.
Steve
_______________________________________________
Trans mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/trans
