[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: draft delta crl text

To: Denis Pinkas <Denis.Pinkas@xxxxxxxx>
Subject: Re: draft delta crl text
From: "Housley, Russ" <rhousley@xxxxxxxxxxxxxxx>
Date: Fri, 01 Jun 2001 14:43:50 -0400
Cc: ietf-pkix@xxxxxxx
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <><>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

Denis:

AAs do not appear in Figure 1. So, I think the text is okay, since it is explaining the figure. AAs may also delegate the issuance of CRLs to a CRL issuer.

Russ

At 06:47 PM 6/1/2001 +0200, Denis Pinkas wrote:

Tim,

(snip)
> 3.  In section 3, we introduce the "CRL issuer" in an enhanced version of
> the ASCII art model of a pKI (figure 1.)
I like the term "CRL Issuer".

However, how should we call an entity that issues ACRLs ?

Is it a "CRL Issuer" ?

If we take the definition under figure 1 which is:
   CRL issuer:  an optional system to which a CA delegates the
                publication of certificate revocation lists;
then we have a problem because ACRLs are not issued by CAs, but by AAs.

Denis

Follow-Ups:
- Re: draft delta crl text (CRL issuer)
  - From: Denis Pinkas

References:
- Algorithms in PKIX and S/MIME - query
  - From: Richard Lampard
- draft delta crl text
  - From: Tim Polk
- Re: draft delta crl text
  - From: Denis Pinkas

Prev by Date: Re: cA flag and CRL issuers
Next by Date: Re: draft delta crl text
Previous by thread: Re: draft delta crl text
Next by thread: Re: draft delta crl text (CRL issuer)
Index(es):
- Date
- Thread