> I understand the reasoning; is it worth putting something into the draft?
Yes, I think it's worth adding a sentence to explain why we're not using the TLS SignatureScheme registry directly. ________________________________ From: Salz, Rich <[email protected]> Sent: 30 March 2021 17:55 To: Rob Stradling <[email protected]>; [email protected] <[email protected]> Subject: Re: duplicate 0x0403 in signature scheme registry CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe. >> The duplicate 0x0403 seems a bug. Any implementor care to clarify * The duplicate 0x0403 is deliberate, because Deterministic and Non-Deterministic ECDSA have different References (RFC6979 and FIPS186-4). How does a relying party know which one is actually being used? (I am sure I am missing something obvious.) > As for why this registry, I assume it’s to be a subset of the TLS registry > “just because” Are there any other reasons? Yes, this was re-wording Mirja’s question. I understand the reasoning; is it worth putting something into the draft?
_______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
