[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: DPD & DPV Basics

To: "Covey, Carlin" <ccovey@xxxxxxxxxx>
Subject: RE: DPD & DPV Basics
From: Stephen Kent <kent@xxxxxxx>
Date: Thu, 11 Jan 2001 18:22:12 -0500
Cc: PKIX List <ietf-pkix@xxxxxxx>
In-reply-to: <>
References: <>

Carlin,

The examples you cite of benefits from having cert chains returned by a DPD server, even if not strictly valid, are examples of the R&D problem area I alluded to in earlier messages. I don't think we have a good set of parameters to express the "not quite valid, but maybe close enough to be useful" notion you are describing. We would need a specific set to be part of the spec, else we will not be able to have a good spec for server operation, nor for client control of server operation. So, I'd discourage heading down this path uless we have such a set of parameters, and Wg agreement on their desirability and completeness.

Steve

References:
- RE: DPD & DPV Basics
  - From: Covey, Carlin

Prev by Date: Re: DPD & DPV Basics
Next by Date: RE: DPD & DPV Basics
Previous by thread: RE: DPD & DPV Basics
Next by thread: Re: DPD & DPV Basics
Index(es):
- Date
- Thread