[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key usage - key encipherment or data encipherment

To: Simon_McMahon@xxxxxxxxxxxxxxxxx, wpolk@xxxxxxxx
Subject: Re: key usage - key encipherment or data encipherment
From: pgut001@xxxxxxxxxxxxxxxxx (Peter Gutmann)
Date: Wed, 11 May 2005 17:41:46 +1200
Cc: ietf-pkix@xxxxxxxx
In-reply-to: <1115780746.4281768a300bf@xxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

wpolk@xxxxxxxx writes:

>This is a recurring problem with applications.  

If this is a recurring problem then it's a strong indicator that the wording
of the spec needs to be changed to address it.

>If your vendor is cooperative, that will make your choice easier.

They almost never are.  The standard flow for this sort of thing is:

  1. Vendor does something silly.

  2. Vendor uses ambiguous wording of spec to justify their silliness
     because they don't want to fix their code.

  3. User has the option of breaking their code to match the vendor 
     silliness, or going somewhere else (learning to flip burgers, for
     example).

Peter (who just last week went through an argument with a vendor who claimed
       that some open-ended wording in the X.509v3 spec (before sundry
       corrections and bugfixes are applied, and not counting X.509v4 updates
       or any bugfixes to that) allowed them to do something silly, and they 
       weren't going to change their code, and anyone who didn't like it could
       bugger off).

References:
- Re: key usage - key encipherment or data encipherment
  - From: wpolk

Prev by Date: Re: key usage - key encipherment or data encipherment
Next by Date: Re: key usage - key encipherment or data encipherment
Previous by thread: Re: key usage - key encipherment or data encipherment
Next by thread: Re: key usage - key encipherment or data encipherment
Index(es):
- Date
- Thread