[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

draft-ietf-pkix-x509-ipaddr-as-extn-00.txt

To: <ietf-pkix@xxxxxxx>
Subject: draft-ietf-pkix-x509-ipaddr-as-extn-00.txt
From: "Sanjaya" <sanjaya@xxxxxxxxx>
Date: Tue, 19 Mar 2002 11:18:44 +1000
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

Hi all,
I'd like to make 2 comments on this draft:

1. The term 'ownership of address space' is not used in RIR community.
    It implies that the address space is permanently given to somebody,
while
    in fact it is only temporarily allocated/assigned while the user still
has
    a relation with the registry (contract with an ISP or a membership with
RIR).
    Could we replace it with 'delegated to', 'allocated to', or 'assigned
to'?
    Also 'stewardship' is probably better than 'ownership' (it implies
responsibility
    as well).

2. The use of attribute certificate (AC) for this purpose is also
appropriate.
    We can just add an attribute certificate whenever a new allocation is
    made, rather than revoking the PKC and create a new one with
    the new allocation added in the extension.
    However, for practical purpose (speed of authentication and authori-
    sation, for example), it make sense to attach the extension in an PKC.
    With this consideration, I propose that we add a profile of an AC as
part
    of this draft to ensure consistency in both approach, and to allow
flexibility
    in the implementation.

Cheers,
Sanjaya
Project Manager
APNIC

References:
- I-D ACTION:draft-ietf-pkix-x509-ipaddr-as-extn-00.txt
  - From: Internet-Drafts

Prev by Date: Re: DPD/DPV reqmts strawpoll
Next by Date: Re: Updating RFC 3039 - and its impact on PI
Previous by thread: I-D ACTION:draft-ietf-pkix-x509-ipaddr-as-extn-00.txt
Next by thread: Free Public Key Enabled Application Test Suite Available
Index(es):
- Date
- Thread