[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: POLL: Nonce-specific error code for OCSP

To: ietf-pkix@xxxxxxx
Subject: Re: POLL: Nonce-specific error code for OCSP
From: "Terry Hayes" <thayes0993@xxxxxxx>
Date: Thu, 16 Oct 2003 13:38:40 -0700
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Organization: AOL
Sender: owner-ietf-pkix@xxxxxxxxxxxx

NO 

The response should be as if the nonce extension was not present in the request. An 
implementation that does not support nonces should simply ignore the extension and 
generate (provide) a non-nonced response. 

The error code does not serve any purpose. Since, the error response is not signed, the 
client cannot use it to implement a policy that allows using a non-nonced response 
in cases where the server does not support nonces.  I believe this is one proposed use 
of this error code. 

Terry 


Michael Myers wrote on 10/15/2003, 2:02 PM: 

All, 

I recently received permission from the chairs to poll the WG 
against the following question. 

Should we standardize an OCSP *V1* error code that enables a 
responder to indicate its inability to respond to nonced 
requests? 

Please respond with either YES or NO. 

Mike

Prev by Date: Re: POLL: Nonce-specific error code for OCSP
Next by Date: Re: POLL: Nonce-specific error code for OCSP
Previous by thread: DISCUSS: Nonce-specific error code for OCSP
Next by thread: RE: POLL: Nonce-specific error code for OCSP
Index(es):
- Date
- Thread