[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: key usage - key encipherment or data encipherment

To: andrewsciberras@xxxxxxxxx, pgut001@xxxxxxxxxxxxxxxxx, Simon_McMahon@xxxxxxxxxxxxxxxxx, wcwang@xxxxxxxxxx
Subject: Re: key usage - key encipherment or data encipherment
From: pgut001@xxxxxxxxxxxxxxxxx (Peter Gutmann)
Date: Sun, 15 May 2005 20:06:30 +1200
Cc: ietf-pkix@xxxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

"Wen-Cheng Wang" <wcwang@xxxxxxxxxx> writes:

>However, I worried that the statement "This (dataEncipherment) bit MUST NOT
>be set when the intention is to encipher intermediate cryptographic keys
>rather than raw user data" might mislead the reader to believe that the
>keyEncipherment bit and the dataEncipherment bit are mutually exclusive.
>Therefore, I suggest to revise the statement as "The dataEncipherment bit
>should not be use to represent the intention of allowing enciphering
>intermediate cryptographic keys. In that case, the keyEncipherment bit should
>be set."

Thanks, that change helps clarify the text.

Peter.

References:
- Re: key usage - key encipherment or data encipherment
  - From: Wen-Cheng Wang

Prev by Date: Re: key usage - key encipherment or data encipherment
Next by Date: Re: key usage - key encipherment or data encipherment
Previous by thread: Re: key usage - key encipherment or data encipherment
Next by thread: Re: key usage - key encipherment or data encipherment
Index(es):
- Date
- Thread