[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Validation

To: <ietf-pkix@xxxxxxx>
Subject: Validation
From: "Haaino Beljaars" <Haaino.Beljaars@xxxxxxx>
Date: Mon, 3 Jun 2002 10:13:32 +0200
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
Thread-index: AcIK1o0SQ/j3fcSHR/CumWFossMC+g==
Thread-topic: Validation

Hi,

What should I do, as an end-user, to 'validate' an (end-entity) certificate?
Is it enough to check the certificate path on (delta-)CRL,OCSP? Or should I do more: for example check to repository and look whether or not the certificate was ever issued? Should I check the fingerprint of the root CA against a published fingerprint?

Thanks,
Haaino

Follow-Ups:
- Re: Validation
  - From: Denis Pinkas

Prev by Date: Re: WG Last Call: Permanent Identifier
Next by Date: Re: draft-ietf-pkix-warranty-extn-01
Previous by thread: WG Last Call CLOSED: DPD/DPV Requirements
Next by thread: Re: Validation
Index(es):
- Date
- Thread