[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key usage - key encipherment or data encipherment

To: ietf-pkix@xxxxxxxx
Subject: Re: key usage - key encipherment or data encipherment
From: Russ Housley <housley@xxxxxxxxxxxx>
Date: Thu, 12 May 2005 15:21:02 -0400
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

There has been a whole lot of discussion about these paragraphs. Sincesome of the discussion has not been CCed to the PKIX mail list, I amposting the resulting words.


     The keyEncipherment bit is asserted when the subject public key is
     used for enciphering private or secret keys, i.e., for key transport.
     For example, this bit shall be set when a RSA public key is to be
     used for encrypting a symmetric content-decryption key or an
     asymmetric private key.

    The dataEncipherment bit is asserted when the subject public key
    is used for directly enciphering raw user data without the use of
    an intermediate symmetric cipher. Note that the use of this
    bit is extremely uncommon; almost all applications use
    key transport or key agreement to establish a symmetric key.

I hope we a re close to closure on this one....

Russ

Follow-Ups:
- Re: key usage - key encipherment or data encipherment
  - From: Michael Ströder
- RE: key usage - key encipherment or data encipherment
  - From: Santosh Chokhani
- Re: key usage - key encipherment or data encipherment
  - From: Arshad Noor
- RE: key usage - key encipherment or data encipherment
  - From: Laudon Williams

Prev by Date: Re: key usage - key encipherment or data encipherment
Next by Date: RE: key usage - key encipherment or data encipherment
Previous by thread: Re: key usage - key encipherment or data encipherment
Next by thread: RE: key usage - key encipherment or data encipherment
Index(es):
- Date
- Thread