Interoperability with IETF Protocols, I New algorithm OIDs or critical extensions are inherently incompatible with current protocols/implementations Limitations on ancillary cryptographic algorithms may be incompatible with protocol details For DH/MQV, kdfs tend to be unique to protocols For ECDSA, hash algorithm is already specified in the protocol stream. Specification in cert creates new verification steps. |