This repository has been archived by the owner on Dec 30, 2022. It is now read-only.

why "4 weeks" #10

Open

andreasschulze opened this issue Aug 16, 2019 · 0 comments

andreasschulze commented Aug 16, 2019

Hello,

the validator code warn on a max_age value shorter then 4 weeks

What's the rationale behind this selection?
RFC 8461 only say

To mitigate the risks of attacks at policy refresh
time, it is expected that this value typically be in the range of
weeks or greater.

why did you choose 4 weeks ?

Andreas

The text was updated successfully, but these errors were encountered:

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.