Delegated Credentials on Chromium

[Nadav Barkol]

Hi Guys,

I'm exploring IETF draft tls-subcerts.  I noticed that the source code of BoringSSL library has an implementation of a new concept in TLS handshake called delegated credentials. 

 However, I see that this concept is not fully implemented in the released source code of Chromium.

Is there another released/draft version of Chromium/BoringSSL where the delegated credentials is implemented and used?

Best Regards,

Nadav

[Adam Langley]

The support in BoringSSL is primarily for the server side of subcerts. An implementation in Chromium would likely depend on some, much larger, changes to certificate verification. It could appear in time, but there is no schedule for it currently.

Cheers

AGL