Andrew Ayer <[email protected]> wrote Mon, 8 May 2017 11:11:41 -0700:
> 3. When producing a new STH or SCT, sign it, store the signature, and > serve the stored signature instead of re-signing on-the-fly every time > the log needs to serve the STH or SCT. Since the log already needs > to store information about STHs and SCTs, also storing the signature > should not be burdensome. Why do logs already need to store information about SCTs? Do logs already need to store information about STHs because of the proposed get-sths API [0][1][2] or something else? [0] https://trac.ietf.org/trac/trans/ticket/160 [1] https://trac.ietf.org/trac/trans/ticket/163 [2] https://github.com/google/certificate-transparency-rfcs/pull/200 _______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
