search

anima-wg / constrained-voucher

This is a repo for the IETF Internet Draft about constrained vouchers in CBOR
2 stars 4 forks source link

Appendix C: set key usage for MASA cert to 'typical' list expected for a CA #245

Closed EskoDijk closed 1 year ago

EskoDijk commented 1 year ago

Proposed to update key usage in MASA cert to the following only:

X509v3 Key Usage: critical
                Digital Signature, Certificate Sign, CRL Sign

A limited set for a CA seems best and most clear. Typical CAs like DigiCert also use this list.

EskoDijk commented 1 year ago

Closed by #249