[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: POLL: Nonce-specific error code for OCSP

To: Michael Myers <mmyers@xxxxxxxxx>, ietf-pkix@xxxxxxx
Subject: Re: POLL: Nonce-specific error code for OCSP
From: Richard Sinn <sinn@xxxxxxxxxxxx>
Date: Thu, 16 Oct 2003 10:36:59 -0700
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030624 Netscape/7.1

YES.

In general, the less information given out, the more secure the environment is. However, if I view OCSP could run in two different modes, one with nonce and one without, then, an error code will be useful to indicate which type of responder is out there. However, I agree with Denis, a resume of advantages vs disadvantages would be useful ... just do not want to miss anything.

Thanks,

Richard Sinn
Infoblox, Inc.

Michael Myers wrote:

All,

I recently received permission from the chairs to poll the WG
against the following question.

Should we standardize an OCSP *V1* error code that enables a
responder to indicate its inability to respond to nonced
requests?

Please respond with either YES or NO.

Mike

References:
- POLL: Nonce-specific error code for OCSP
  - From: Michael Myers

Prev by Date: RE: POLL: Nonce-specific error code for OCSP
Next by Date: Re: POLL: Nonce-specific error code for OCSP
Previous by thread: RE: POLL: Nonce-specific error code for OCSP
Next by thread: Re: POLL: Nonce-specific error code for OCSP
Index(es):
- Date
- Thread