Hi, This issue is currently discussed in the LAMPS WG. The background is that X.520 removed the size limitations of the common X.520 attributes in 2008, while they are still enforced in RFC 5280.
I don't want to move this discussion to TSL and I don't want to express an opinion on the matter in this thread. However, I'm curious about the facts of the case, and would appreciate if people here could help me answer a key question: - Would removal of such upper bounds (e.g. common name max 64 characters) break TLS in any way such as: a) Breaking current implementations b) Require any changes or updates to the TLS standard. Both these facts are being claimed, and I simply wonder if these claims are is true. Thanks! -- ________________ Stefan Santesson _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls