[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Q: Where should do I put a max amount in a X.509v3 certificate?

Subject: Re: Q: Where should do I put a max amount in a X.509v3 certificate?
From: Michael Ströder <michael@xxxxxxxxxxxx>
Date: Mon, 11 Mar 2002 15:55:22 +0100
Cc: ietf-pkix@xxxxxxx
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Reply-to: michael@xxxxxxxxxxxx
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.8+) Gecko/20020228

Tom Gindin wrote:


      Since this "purchase limit" is intended as a constraint on signed
orders, and those are signed by PKC's rather than AC's, the constraint
needs to go into the PKC.  I also don't think the syntax is very complex

I'd suggest to thoroughly discuss a business model first before thinking about technical aspects (not on PKIX list off course). From some discussion I remember that most drafts for something like this just didn't fit into how financial institutions are working (although the institutions were committed to use this particular PKI ;-).

So defining technical specifications was completely useless because there was no working business model behind it.

Ciao, Michael.

Follow-Ups:
- Re: Q: Where should do I put a max amount in a X.509v3 certificate?
  - From: todd glassey

References:
- RE: Q: Where should do I put a max amount in a X.509v3 certificat e?
  - From: Tom Gindin

Prev by Date: Re: Q: Where should do I put a max amount in a X.509v3 certificate?
Next by Date: Re: Q: Where should do I put a max amount in a X.509v3 certificat e?
Previous by thread: Re: Q: Where should do I put a max amount in a X.509v3 certificat e?
Next by thread: Re: Q: Where should do I put a max amount in a X.509v3 certificate?
Index(es):
- Date
- Thread