What exactly does "share identifiers" mean? #57
Comments
|
Yeah, I changed it from "share a preponderance of identifiers with" to just "share identifiers with" to allow more freedom in server policy. I think that all of the following would be reasonable policies for a server to have:
I agree that it should be clearer that exactly what approach is taken is left up to server policy. I'll work on some language. |
|
I agree that leaving it up to server policy makes sense, given that what a server should do with an accepted |
aarongable
added a commit
that referenced
this issue
Mar 15, 2024
aarongable
added a commit
that referenced
this issue
Mar 15, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I wish I'd seen 8b464ff (Remove "a preponderance of") yesterday, before I spent time mulling over how to interpret it! :-)
I'm not sad to see that somewhat archaic word ditched, but the wording after that commit leaves me even more unsure of what's expected.
With "a preponderance of", I'd concluded yesterday that >50% of the identifiers in the newOrder request must match identifiers in the certificate identified by
replaces, or else the Server would ignorereplaces. (I'd also concluded that "preponderance" was vague enough that it would also make sense for that ">50%" figure to be configurable, per Server, anywhere between ">50%" and "100%").But what exactly does "share identifiers" mean?
Does the newOrder request have to have the exact same set of identifiers as the certificate identified by
replaces, with zero identifiers dropped and zero identifiers added? (If so, then I'd suggest tightening the wording to "share the exact same set of identifiers" or something similar).Or is it intended that defining the meaning of "share identifiers" should be left to each individual Server's policy? (If so, then I'd suggest adding to wording to explicitly say this).
The text was updated successfully, but these errors were encountered: