[Asra] Section 7 describes integrations into NTP and starts to mention applications such as X.509 verification, for example, for short-lived certificates. Like RFC 3161 support in X.509 verification (for proof of signature creation time), it would be interesting to get alignment and/or propose augmenting X.509 verification with Roughtime timestamps. Some considerations would be length of responses and configuration of out of band client trust for Roughtime server public keys, but the benefits would extend for systems already using X.509 PKI.
[Asra] Section 7 describes integrations into NTP and starts to mention applications such as X.509 verification, for example, for short-lived certificates. Like RFC 3161 support in X.509 verification (for proof of signature creation time), it would be interesting to get alignment and/or propose augmenting X.509 verification with Roughtime timestamps. Some considerations would be length of responses and configuration of out of band client trust for Roughtime server public keys, but the benefits would extend for systems already using X.509 PKI.