Closed malishav closed 7 months ago
From John Mattsson's review (https://mailarchive.ietf.org/arch/msg/ace/h85KdNLkMxqzCZjJlY-fGlPEyVw/):
A Trust Anchor database is always required, not just for certificates (I have not read RFC 7030). ” enabling the client to authenticate the server” is always required.
See Subsection "Certificate-based Authentication".
From John Mattsson's review (https://mailarchive.ietf.org/arch/msg/ace/h85KdNLkMxqzCZjJlY-fGlPEyVw/):
See Subsection "Certificate-based Authentication".