Thanks Alan and Micheal for the feedback. I raised a PR https://github.com/tireddy2/eap-pqc/pull/2 to address some of the comments. I don't see a need to update the EST protocol to support multiple certificate chains, since clients are provisioned with the explicit trust anchor by the EST server itself.
Cheers, -Tiru On Wed, 9 Jul 2025 at 20:05, Alan DeKok <alan.dekok= [email protected]> wrote: > On Jul 9, 2025, at 1:40 PM, Michael Richardson <[email protected]> > wrote: > > I will have to go read this document to understand how the specific > > certificiate chain is identitied. > > A quick scan shows it supports only one certificate chain. So that was > my question, too. > > * multiple chains? > > * versioning of chains? > > * caching? > > But overall, I think it's a good approach. > > Alan DeKok. > > _______________________________________________ > Emu mailing list -- [email protected] > To unsubscribe send an email to [email protected] >
_______________________________________________ Emu mailing list -- [email protected] To unsubscribe send an email to [email protected]
