Matching CertIDs between OCSP requests and responses

[Jonathan.Tuliani@xxxxxxxxxxx]

All,

Another OCSP (v1) question:  Can a client assume that the OCSP response
CertID terms will precisely match those from the request?  That is, can it
assume
1 - that every certificate in the request will be in the response (i.e.
it's a server error otherwise)
2 - that the hashing algorithm in the response CertIDs will be the same as
that which was used in the request (that is, the CertID data will match
byte-for-byte between request and response).

I guess given the variety of identifiers available alongside CertID in OCSP
v2 that the issue of matching identifiers between request and response
raised in point 2 above will be even more critical there.  But that's for
other people to worry about - it's v1 I'm interested in for now.

Thanks,

Jonathan
----------------
Dr Jonathan Tuliani
www.symbian.com



**********************************************************************
Symbian Ltd is a company registered in England and Wales with registered number 01796587 and registered office at 19 Harcourt Street, London, W1H 4HF, UK.
This message is intended only for use by the named addressee and may contain privileged and/or confidential information. If you are not the named addressee you should not disseminate, copy or take any action in reliance on it. If you have received this message in error please notify postmaster@xxxxxxxxxxx and delete the message and any attachments accompanying it immediately. Symbian does not accept liability for any corruption, interception, amendment, tampering or viruses occuring to this message in transit or for any message sent by its employees which is not in compliance with Symbian corporate policy.
**********************************************************************