TAM certificate caching

ietf-teep / teep-over-http

HTTP Transport for TEEP

2 stars 5 forks source link

TAM certificate caching #12

Closed dthaler closed 4 years ago

dthaler commented 4 years ago

Tiru wrote:

"If the TEEP implementation already had a cached TAM certificate that it trusts, it could skip to step 9 instead and generate a QueryResponse.)"

Comment> I don't get the above line, none of the steps discuss caching of TAM certificate.

dthaler commented 4 years ago

Caching of certificates would be a TEEP protocol layer thing, not a transport layer thing, so you’d get the answer from the TEEP protocol spec. Here it’s referring to the OCSP_DATA in the QueryRequest in section 4.1 of draft-ietf-teep-protocol. The fact that the “caching” is not mentioned in that spec is a valid issue for that spec to fix.

Updated text here to reference OCSP_DATA.

dthaler commented 4 years ago

Fixed in -06 but still needs more changes in the TEEP protocol spec which are covered by https://github.com/ietf-teep/teep-protocol/issues/17