[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Cert comparison needs AI?

To: "'Anders Rundgren'" <anders.rundgren@xxxxxxxxxx>, "'J D Brooks'" <jbrooks@xxxxxxxxxxxxxxxx>, ietf-pkix@xxxxxxx, list@xxxxxxxxxxxxxxxxx
Subject: RE: Cert comparison needs AI?
From: Alfred Arsenault <awarsen@xxxxxxxxxxxxxx>
Date: Tue, 15 Feb 2000 08:27:38 -0500


<Anders Rundgren wrote:>


<snip>

IMO QC-03 guarantees that the limited interoperability offered by current
PKI solutions (*) is preserved.

(*) Lotus Notes do not accept any X509 certificates except its own according
to a recent
study by Swedish Police Authorities

(*) Win2K kerberos authentication only accepts its own X509 certificates
according to
a well-known PKI evangelist in another mailing list

Anders

AWA:  It's a bit harsh to blame these things on the QC draft.  If vendors
want their applications to only accept certain certificates and to reject
certificates issued by "competitors" or "those who haven't signed the right
'partnering agreement'", there's nothing we're going to do about it in PKIX.
That's a market-driven issue, and it will always be possible for application
developers to make this so.


			Al Arsenault

-- As usual, my own opinions; may or may not resemble anything my employer
is doing; etc.

Prev by Date: RE: Cert comparison needs AI?
Next by Date: Re: Signing CRL with offline CA (was [Fwd: OCSP and CSL]).
Previous by thread: RE: Cert comparison needs AI?
Next by thread: RE: Cert comparison needs AI?
Index(es):
- Date
- Thread