On Fri, Jun 1, 2012 at 1:33 PM, Alexey Melnikov <[email protected]> wrote:
> I agree with Julian: this will make the header field effectively non > extensible. And if you update the header field by adding new values, all > older implementations will start ignoring it, which is a deployment > headache. For public key pinning, I'm allowing undefined directives in my implementation. I should check that I'm explicit about that in the I-D, come to think of it... _______________________________________________ websec mailing list [email protected] https://www.ietf.org/mailman/listinfo/websec
