Re: ISSUE-187 (PinnedCerts): Be clear on just what pinned certificates are and are not [wsc-xit] from Thomas Roessler on 2008-03-07 (public-wsc-wg@w3.org from March 2008)

From: Thomas Roessler <tlr@w3.org>
Date: Fri, 7 Mar 2008 22:15:23 +0100
To: Web Security Context Working Group Issue Tracker <sysbot+tracker@w3.org>
Cc: public-wsc-wg@w3.org
Message-ID: <20080307211523.GT99946@iCoaster.does-not-exist.org>

On 2008-03-07 20:03:28 +0000, Web Security Context Working Group Issue Tracker wrote:

> ISSUE-187 (PinnedCerts): Be clear on just what pinned certificates are and are not [wsc-xit]

> http://www.w3.org/2006/WSC/track/issues/

> Raised by: Mary Ellen Zurko
> On product: wsc-xit

> 5.6.1 says that pinned SSCs are and are not (like) validated
> certificates. 
> 
> http://www.w3.org/2006/WSC/drafts/rec/rewrite.html#selfsignedcerts

> When the spec itself is clear on how they are similar and how
> they are different, remove this confusing line: 

> A certificate that is [Definition: pinned] to a destination will be 
> treated similar (but not identical) to a validated certificate in 
> interactions defined elsewhere in this specification.

Or rather, make the line less confusing. ;-)

-- 
Thomas Roessler, W3C  <tlr@w3.org>

Received on Friday, 7 March 2008 21:15:29 UTC