It seems like part of your question is whether it's necessary for the
terminal cert in a chain to have subject==issuer. That is absolutely *not*
the case, at least in NSS. Any certificate can be marked as trusted, in
which case validation will terminate with that cert successfully (or
actively di
Hi all,
I have a path validation/hierarchy question - specifically wondering
about the path validation problems incurred on various clients. (I
realize there's no definite answer besides "test it on all the clients
you care about".)
Imagine a four-cert hierarchy R -> A -> B -> L (Root, Leaf, an
2 matches
Mail list logo
