Hi all, I guess that the problem with the current PKIX solution on suspension is that it is just an extended revocation status - this means that it is just a sub-case of revocation. In many cases this is not what you need, and when some laws require "suspension" they have not a clear idea of what is it, actually. I wonder how many "non-ad-hoc" applications actually know how to correctly handle suspension... we are still facing interoperability issues between PKIs with respect to this issue, I guess... Later, Max Ignacio Alamillo wrote:
Under Spanish law, suspension is a legal requirement (not a strictly enforced one, but a requirement after all) and therefore many CA have implemented it, and it is actually used.
--
Best Regards,
Massimiliano Pala
--o------------------------------------------------------------------------
Massimiliano Pala [OpenCA Project Manager] pala@xxxxxxxxxxxxxxxx
project.manager@xxxxxxxxxx
Dartmouth Computer Science Dept Home Phone: +1 (603) 397-3883
PKI/Trust - Office 063 Work Phone: +1 (603) 646-9179
--o------------------------------------------------------------------------
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature