[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RFC 3279: ECDSA and ECDH keyUsage Text

To: PKIX <ietf-pkix@xxxxxxx>
Subject: RFC 3279: ECDSA and ECDH keyUsage Text
From: "Sean P. Turner" <turners@xxxxxxxx>
Date: Thu, 17 Mar 2005 15:13:14 -0500
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Organization: IECA, Inc.
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7.2) Gecko/20040804 Netscape/7.2 (ax)

I'm a little confused by the keyUsage paragraphs (3.2.5) in RFC 3279.It seems like the current text on applies to CAs and CRL issuers. Ibelieve the text needs to be modified as follows to address end entities:

replace (before the list of digitalSignature, nonRepudiation, andkeyAgreement) "If the keyUsage extension is present in a CA or CRLissuer certificate" with "If the keyUsage extension is present in an endentity certificate."

and

replace (before the list of digitalSignature, nonRepudiation,keyAgreement, keyCertSign, and cRLSign) "If the keyUsage extension ispresent in a CA certificate" with "If the keyUsage extension is presentin a CA or CRL issuer certificate."

I think this was just a cut and paste error. Sorry for the spam ifsomebody else already caught this.

spt

Follow-Ups:
- Re: RFC 3279: ECDSA and ECDH keyUsage Text
  - From: Daniel Brown

Prev by Date: RE: RFC 3647 - CP vs CPS
Next by Date: Re: RFC 3279: ECDSA and ECDH keyUsage Text
Previous by thread: RFC 3647 - CP vs CPS
Next by thread: Re: RFC 3279: ECDSA and ECDH keyUsage Text
Index(es):
- Date
- Thread