Feature #396: Send certificate chain matching accepted CAs - Open eCard - Open eCard Development Center

Actions

Copy link

Feature #396

closed

Send certificate chain matching accepted CAs

Added by Tobias Wich almost 9 years ago. Updated over 6 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Hans-Martin Haase

Target version:

1.3.0

Start date:

05/27/2015

Due date:

% Done:

Estimated time:

Reviewer:

Tobias Wich

Build Version:

Description

When performing TLS client authentication, the TLS RFCs state that the chain should not contain the issuer certificate referenced in certificate request message. Furthermore only certificates which match any of the referenced CAs may be used for the authentication.

For the special case where no issuer is referenced any certificate is acceptable for the server. The Root CA certificate is excluded in that case.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Open eCard

Feature #396

Send certificate chain matching accepted CAs

Updated by Tobias Wich almost 9 years ago

Updated by Tobias Wich over 8 years ago

Updated by Tobias Wich over 6 years ago