> An invalid notation might not be rejected by a client (is it critical > marked?). Is there a reference for this behavior in RFC and tested on > various implementations?
I still don't understand. It's not the notation that is invalid, it's the certificate itself. It's my key, as long as we don't assume that an attacker can forge certificates for my key that check out cryptographically (in which case we have other problems!), I hope every implementation won't accept non-verifying self-certificates into its keyring. - V _______________________________________________ Sks-devel mailing list Sks-devel@nongnu.org https://lists.nongnu.org/mailman/listinfo/sks-devel