[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Re: Why is privateKeyUsagePeriod deprecated?

To: ietf-pkix@xxxxxxx
Subject: RE: Re: Why is privateKeyUsagePeriod deprecated?
From: <diegofv@xxxxxxxxxxx>
Date: Tue, 22 Jul 2003 15:09:24 GMT
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Reply-to: "Diego Fernandez" <diegofv@xxxxxxxxxxx>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

>Given that this isn't going to change, it would seem that some  
>guidance for 
>users would be useful here.  Since neither (1) nor (2) can be  
>altered, what 
>would be needed is a simple extension, found in signing certs,  
>containing a 
>date to which the cert can still be used for signature-checking  
>beyond the 
>obvious notAfter value.  This could be written up as a short one-page 
>application note, no more (well, a bit more once you add all the usual 
>boilerplate and whatnot). 
>

Prev by Date: Re: Why is privateKeyUsagePeriod deprecated?
Next by Date: RE: Why is privateKeyUsagePeriod deprecated?
Previous by thread: Re: Why is privateKeyUsagePeriod deprecated?
Next by thread: Re: Why is privateKeyUsagePeriod deprecated?
Index(es):
- Date
- Thread