[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: encoding an X.509 certificate

To: "Anders Rundgren" <anders.rundgren@xxxxxxxxx>
Subject: Re: encoding an X.509 certificate
From: "Tom Scavo" <trscavo@xxxxxxxxx>
Date: Thu, 6 Nov 2008 14:25:00 -0500
Cc: pkix <ietf-pkix@xxxxxxx>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=vpsS0lMJM2CKUfWzM1zYEtsq/u4/2BSYM+kqoUz7Sw8=; b=BifTDnp+lkU023ZJdbdJ9/rHOJGSBS4y3D29rYnnTs4Z3+V6qOR6n0411UyMlCtn5c ixvTpTVF3L9OUHAmjw8DESfih12uqTIS+hoS5D/pr0szia7OsQG479byVX5NBhx0/Ag3 adbXk0f4+8vgxLg16PbGigC2huShwQTamx5aw=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=WncYeIz287byN+7/40LBhTQWjec3Y8fcnXq1nerd80JNrPM+aU9Peu6n0VTTziVpN7 tUK/6Pzr11b8lVExyohIOPYT80hUoIXa7Uw5ZsDW99MrSLQHzKZUWCX9V7TkrUX6xPE+ gmBI33/DPG3TjYR8M7u+nsNX2yqOHGWRjRa5k=
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <ea2af9bd0811050548v545182cew3827a95b007dc466@xxxxxxxxxxxxxx> <ea2af9bd0811060949t2462d9fdk93758a3e093502a1@xxxxxxxxxxxxxx> <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

On Thu, Nov 6, 2008 at 2:02 PM, Anders Rundgren
<anders.rundgren@xxxxxxxxx> wrote:
>
> It was fascinating to hear about a debate starting 7 years after the specification became finalized!

A significant observation, surely.

> I can't really tell based on the XML Dsig but it appears that the interpretation is DER
> http://java.sun.com/j2se/1.5.0/docs/api/java/security/cert/Certificate.html#getEncoded()
> since this is the only decoding available, in at least in standard Java.

Good point.

> Presumably other decodings are incompatible with existing libraries as well.

That is one thing I'm trying to find out, yes.

> I would call this a de-facto standard for XML.

Thanks,
Tom

Follow-Ups:
- Re: encoding an X.509 certificate
  - From: Ben Laurie

References:
- encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Anders Rundgren

Prev by Date: RE: encoding an X.509 certificate
Next by Date: RE: encoding an X.509 certificate
Previous by thread: Re: encoding an X.509 certificate
Next by thread: Re: encoding an X.509 certificate
Index(es):
- Date
- Thread