[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OCSP response pre-production

To: ietf-pkix@xxxxxxx
Subject: Re: OCSP response pre-production
From: Jean-Marc Desperrier <jmdesp@xxxxxxxxxxxxx>
Date: Fri, 03 Oct 2003 21:59:54 +0200
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.6a) Gecko/20031002

Florian Oelmaier wrote:

- re-assert that it is not conformant to RFC2560 to send back a response without to nonce to a request requiring a nonce (it might change in OCSPv2)
The RfC states: "[A request includes] [...] optional extensions which MAY be processed by the OCSP Responder".

I don't know. This is not in line with RFC3280 definition of extensions, in which if you *do* recognize an extension, you have to treat it correctly and not simply ignore it. With that definition if you implement RFC2560, you can say I don't know what id-pkix-ocsp-nonce means so I don't care about it, because it's defined in the standard.

Follow-Ups:
- RE: OCSP response pre-production
  - From: Florian Oelmaier

References:
- RE: OCSP response pre-production
  - From: Florian Oelmaier

Prev by Date: RE: OCSP response pre-production
Next by Date: RE: OCSP response pre-production
Previous by thread: RE: OCSP response pre-production
Next by thread: RE: OCSP response pre-production
Index(es):
- Date
- Thread