Content deleted Content added
Reorganized references; added reference to "New Tricks For Defeating SSL In Practice". |
m Removing unnecessary comment from previous edit |
||
Line 8:
* The list of [[Certificate Policy]] [[Object identifier|OIDs]] acceptable to the relying party (or any);
* The trust anchor of the certificate path; and
* Indicators whether policy mapping is allowed and how/when/whether the "any" policy [[Object identifier|OID]] is to be tolerated.
In the standardized algorithm, the following steps are performed for each certificate in the path, starting from the trust anchor. If any check fails on any certificate, the algorithm terminates and path validation fails. (This is an explanatory summary of the scope of the algorithm, not a rigorous reproduction of the detailed steps.)
| |||