At 11:35 PM +0200 8/14/07, Leif Johansson wrote:
Won't a typed blob of some sort neatly solve all of the issues around certificate types?
Yes.
I'm asking because a typed blob will also have other nice properties such as isolation between a tam "engine" and plugins dealing with individual certificate types. This will allow us to spend time figuring out what a tam "client" must be able to assume about the entities stored in a tam "server" rather than engage in a discussion on the metaphysics of trust ;-)
Fully agree. --Paul Hoffman, Director --VPN Consortium