RE: Attribute Cert Policies Rationale

["Santosh Chokhani" <chokhani@xxxxxxxxxxxx>]

Chris:

I think having a policy OID does not hurt anything.  But, my opinion in
this matter is not useful since I have not had much practical or
theoretical experience in dealing with attribute certificates.

-----Original Message-----
From: Christopher S. Francis [mailto:chris.francis@xxxxxxxxxxxxxxxx] 
Sent: Tuesday, December 10, 2002 3:25 PM
To: Santosh Chokhani; 'Russ Housley'
Cc: ietf-pkix@xxxxxxx
Subject: RE: Attribute Cert Policies Rationale


Santosh,
...snip
Russ:

In that case, we do not need to do much since RP can get the attribute
certificate policy from the certificate and make its own decision.


[Chris Francis - WetStone Technologies] And there's the rub.  Currently
there's no place to put the attribute certificate policy in the
certificate. Do you support the idea of adding an extension for this
purpose? Chris