Hi Melinda and Rich, Thank for your comments, I agree that there is not much demand from the enterprise PKI but with the rise of IOT devices and automatic enrollment for client certificates, a need for some auditing of all the issued client certificates is becoming more important. Managing large services that use client certificates, I feel having some assurance that the clients have SCT logs and are not revoked will give me a better sleep at night.
-Mohit On Mon, May 10, 2021 at 6:04 AM Salz, Rich <[email protected]> wrote: > > > But I have to say, the core problem this proposal > faces would seem to be lack of demand on the part of folks who > consume client certificates. > > Agreed. In our experience, client certs are deployed from an enterprise PKI, > and the receiving consumers assume valid issuance. I'm not aware of any of > our customers (the few that use client certs) who also use a public CA, or > even more than one. > > Added the trans list. > > > _______________________________________________ > TLS mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/tls _______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
