I agree with the reasoning, but I think you have to deprecate before removal and therefore not in this draft.
We could update the security concerns and say MAY NOT about issuance perhaps. The text already says clients MAY use them. They're still allowed in the WebPKI, and I am unsure of non-web uses. _______________________________________________ Uta mailing list Uta@ietf.org https://www.ietf.org/mailman/listinfo/uta