ISSUE-187 (PinnedCerts): Be clear on just what pinned certificates are and are not [wsc-xit] from Web Security Context Working Group Issue Tracker on 2008-03-07 (public-wsc-wg@w3.org from March 2008)

From: Web Security Context Working Group Issue Tracker <sysbot+tracker@w3.org>
Date: Fri, 7 Mar 2008 20:03:28 +0000 (GMT)
To: public-wsc-wg@w3.org
Message-Id: <20080307200328.8A7C4C6DBA@barney.w3.org>

ISSUE-187 (PinnedCerts): Be clear on just what pinned certificates are and are not [wsc-xit]

http://www.w3.org/2006/WSC/track/issues/

Raised by: Mary Ellen Zurko
On product: wsc-xit

5.6.1 says that pinned SSCs are and are not (like) validated certificates. 

http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#selfsignedcerts

When the spec itself is clear on how they are similar and how they are different, remove this confusing line: 

A certificate that is [Definition: pinned] to a destination will be 
treated similar (but not identical) to a validated certificate in 
interactions defined elsewhere in this specification.

Received on Friday, 7 March 2008 20:03:35 UTC