(Apologies if you're receiving this twice; I originally sent it only to the
CABForum list, instead of this IETF list.)
Hi Paul,
I'm sorry that I wasn't able to be at the ACME session last week; I've
enjoyed reading the presentation slides and the draft notes that were taken
during the session.
Rob Stradling wrote:
>> > Ah, so a CA's Subject DN does have to be globally unique then! So
>> if
>>
>> No, it does not. It does not even need to be unique within the CA.
>> And if you think about it, if someone wants a new certificate before
>> the old one expires, one
> > Ah, so a CA's Subject DN does have to be globally unique then! So if
>
> No, it does not. It does not even need to be unique within the CA.
> And if you think about it, if someone wants a new certificate before the old
> one expires, one needs exactly that. IssuerDN+(certificate)SerialNumber