[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: PKIX WG Last Call: 3770bis

To: ietf-pkix@xxxxxxx, tim.polk@xxxxxxxx
Subject: Re: PKIX WG Last Call: 3770bis
From: Peter Sylvester <Peter.Sylvester@xxxxxxxxxx>
Date: Fri, 8 Apr 2005 12:49:42 +0200 (MEST)
Cc: kent@xxxxxxx, housley@xxxxxxxxxxxx, timmoore@xxxxxxxxxxxxx
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx



The text at the end of chapter two seems to allow two
different treatments for an entity that KNOWS the
extension depending on the criticality bit. 

if I compere the last two paragraphs with similar ones
in rfc 2459 or 3280, it seems that the text is at least
confusing.

I think the best is, not to remove them here, and not try for
'convenience' to give a definition at all. 

Or, define a keyPurpose, say whether it is critical or
not, or don't say anything, and specify the treatment when
it is recognized.

The text also references keyUsage, but does not say which
keyUsage bits are compatible with the defined KeyPurposes.



X.208 and X.209 are a bit outdated. is 1.3 necessary?
It is not in rfc 3280, as far as I see. 

have fun.

Follow-Ups:
- Re: PKIX WG Last Call: 3770bis
  - From: Russ Housley
- Re: PKIX WG Last Call: 3770bis
  - From: Peter Gutmann

Prev by Date: PKIX WG Last Call: 3770bis
Next by Date: pExttandder is now here! Dont waise your time imprecate
Previous by thread: PKIX WG Last Call: 3770bis
Next by thread: Re: PKIX WG Last Call: 3770bis
Index(es):
- Date
- Thread