Steve, The situation in my opinion is that since algorithms other than the mandatory to implement algorithms are allowed and since the client currently has no mechanism to indicate it's algorithm preferences, there is always a risk that a server choosing a non mandatory algorithm, generates a response that the client may not support. If you think a clarification is needed, then that is what I think should be said. /Stefan On 09-11-17 4:52 PM, "Stephen Kent" <kent at bbn.com> wrote: > Stefan, > > >> ... >> >> Not sure I agree on this one. One mandatory to implement algorithm does not >> ensure interoperability if other algorithms are allowed. > > We should probably clarify this by noting that "mandatory to > implement" algorithms MUST be supported by both servers and clients. > However, the choice of which of these algorithm to USE in a given > context is a local matter, and this means that a server may choose to > restrict the algs that it supports, and thus interoperability may be > impaired. > > Steve > > _______________________________________________ > pkix mailing list > pkix at ietf.org > https://www.ietf.org/mailman/listinfo/pkix
Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.