clarifications needed re safe form editor cert matching algorithm

Tyler,

going through the matching algorithm while folding it in...

- The current language confuses attributes and fields.  I suspect
  that you mean the various attributes of the Subject certificate
  field.  Please confirm.

- I notice that you have some rules that concern matching the CN
  attribute, but none concerning subjectAltName.  I'm happy to
  simply track this point as an issue.

Also, I'll open an issue to track the "PKI orthodoxy" remarks that
Hal had made at the face-to-face, and will link to that issue from
the draft.

(I'm indeed planning to put in links to all open issues that concern
specific parts of the document.)

Thanks,
-- 
Thomas Roessler, W3C  <tlr@w3.org>

Received on Thursday, 11 October 2007 09:38:52 UTC