Application issued certificate
Name: defined by user
Certificate issue: issued by application (or cloud service)
Name resolution: needs new method in browser ??
Certificate validation : needs new method in browser
An alternative to the gateway issued certificate, is to look at environments where a locally hosted application (e.g. a mobile application) will issue the certificates.
Nick: more work to be done here
Describe a method which uses a local application as CA
this is close to the matter solution
would also require an additional name lookup service