[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Embedded certificate image

To: ietf-pkix@xxxxxxx, pgut001@xxxxxxxxxxxxxxxxx, stefan@xxxxxxxxxxx, ynir@xxxxxxxxxxxxxx
Subject: Re: Embedded certificate image
From: Peter Gutmann <pgut001@xxxxxxxxxxxxxxxxx>
Date: Thu, 30 Jul 2009 20:01:23 +1200
In-reply-to: <C6971BFE.39EC%stefan@xxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

Stefan Santesson <stefan@xxxxxxxxxxx> writes:

>This is the case for RFC 3709, which is the standard we would use to bind a
>cert image to the certificate. RFC 3709 does only offer a URL as means of
>referring to the actual image, it does not offer any other means of local
>storage.

Why not use one of the type-and-value options, OtherLogoTypeInfo or something? 
This just seems like a horrible kludge, like pounding a nail with a scredriver 
because that's what was lying around.

How do you distinguish real URLs from not-a-real-URLs?

Peter.

Follow-Ups:
- Re: Embedded certificate image
  - From: Stefan Santesson

References:
- Re: Embedded certificate image
  - From: Stefan Santesson

Prev by Date: Re: Embedded certificate image
Next by Date: Re: Embedded certificate image
Previous by thread: Re: Embedded certificate image
Next by thread: Re: Embedded certificate image
Index(es):
- Date
- Thread