RFC Errata
RFC 6960, "X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP", June 2013
Note: This RFC has been updated by RFC 8954
Source of RFC: pkix (sec)
Errata ID: 5730
Status: Held for Document Update
Type: Technical
Publication Format(s) : TEXT
Reported By: Jaime Hablutzel
Date Reported: 2019-05-22
Held for Document Update by: Paul Wouters
Date Held: 2024-02-23
Section 4.1.1 says:
optionalSignature contains the algorithm identifier and any associated algorithm parameters in signatureAlgorithm; the signature value in signature; and, optionally, certificates the server needs to verify the signed response (normally up to but not including the client’s root certificate).
It should say:
optionalSignature contains the algorithm identifier and any associated algorithm parameters in signatureAlgorithm; the signature value in signature; and, optionally, certificates the server needs to verify the signed request (normally up to but not including the client’s root certificate).
Notes:
The paragraph refers to the signed "response" where it should refer to the signed "request".