[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hash values in OCSP

To: mars@xxxxxxxxxxxxxx
Subject: Re: Hash values in OCSP
From: Rich Salz <rsalz@xxxxxxxxxx>
Date: Wed, 16 Jan 2002 21:04:41 -0500
Cc: ietf-pkix@xxxxxxx
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

> 1. The IssuerNameHash has to be calculated using the DER encoding of the
> issuer's name field EXACTLY as it appears in the target certificate (the one
> being checked with OCSP)? Or is there a standard regarding the order of the
> SETs in the RDN components?

Well it's DER, which specifies exactly one way to encode things, so if
the cert is encoded in DER, then it is presumably encoding the RDN SETs
the right way.  So the answer to your question is "yes" :)

#2 -- someone else will have to answer; I've been away from OCSP for too
long.
	/r$

-- 
Zolera Systems, Securing web services (XML, SOAP, Signatures,
Encryption)
http://www.zolera.com

References:
- Hash values in OCSP
  - From: Miguel Angel Rodriguez

Prev by Date: RE: Hash values in OCSP
Next by Date: Re: I-D ACTION:draft-ietf-pkix-dpv-dpd-req-01.txt
Previous by thread: Hash values in OCSP
Next by thread: RE: Hash values in OCSP
Index(es):
- Date
- Thread