[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Impersonation Certificates - finding IC's

To: <ietf-pkix@xxxxxxx>
Subject: Impersonation Certificates - finding IC's
From: "Carlin Covey" <ccovey@xxxxxxxxxx>
Date: Thu, 8 Mar 2001 19:04:40 -0700
Importance: Normal
In-reply-to: <>

In section 2.6 of draft-ietf-pkix-impersonation-00.txt the
following words appear:

   "To discourage mistakes in this area, this Impersonation Certificate 
   profile defines that the IC subject (actually its subjectAltName) is 
   just a pseudo-randomly generated string."

[Carlin's comments/questions]:
If the IC subject name is a pseudo-randomly generated string, how is the 
IC found in an X.500 or LDAP Directory?  Must it always be passed by the 
application to the RP rather than being found in a directory?  

- Carlin Covey
  Cylink Corporation

Follow-Ups:
- Re: Impersonation Certificates - finding IC's
  - From: Steve Tuecke

References:
- RE: Open Issue in Part1: path length constraints
  - From: David P. Kemp

Prev by Date: Impersonation Certificates - proofing IC requesters
Next by Date: I-D ACTION:draft-ietf-pkix-new-part1-05.txt
Previous by thread: RE: Open Issue in Part1: path length constraints
Next by thread: Re: Impersonation Certificates - finding IC's
Index(es):
- Date
- Thread