[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Q: Where should do I put a max amount in a X.509v3 certificat e?

To: "Tom Gindin" <tgindin@xxxxxxxxxx>, <stephen.farrell@xxxxxxxxxxxx>
Subject: RE: Q: Where should do I put a max amount in a X.509v3 certificat e?
From: "Michael Myers" <myers@xxxxxxxxxxxxx>
Date: Mon, 11 Mar 2002 12:17:29 -0800
Cc: "Yee, Peter" <pyee@xxxxxxxxxxxxxxx>, "'Tim Polk'" <tim.polk@xxxxxxxx>, "Roberto Opazo Gazmuri" <roberto@xxxxxxxx>, "PKIX \(Grupo de la IETF\)" <ietf-pkix@xxxxxxx>
Importance: Normal
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

Tom, all:

Perhaps the following design principle is well understood but in
the context of this thread I think it bears repeating.  Namely,
the more authorization type attributes bound into a PK cert, the
more likely that PK cert will be revoked prior to its
expiration.  Hence ACs.

Mike

References:
- Re: Q: Where should do I put a max amount in a X.509v3 certificat e?
  - From: Tom Gindin

Prev by Date: RE: Q: Where should do I put a max amount in a X.509v3 certificat e?
Next by Date: Re: Q: Where should do I put a max amount in a X.509v3 certificate?
Previous by thread: Re: Q: Where should do I put a max amount in a X.509v3 certificat e?
Next by thread: RE: Q: Where should do I put a max amount in a X.509v3 certificat e?
Index(es):
- Date
- Thread