[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Good certificate renewal practice

To: <ietf-pkix@xxxxxxx>
Subject: Good certificate renewal practice
From: Frédéric Giudicelli <groups@xxxxxxxxxx>
Date: Mon, 3 Nov 2003 05:51:22 +0100
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

Hello,
After reviewing "pkix-roadmap" and "rfc2510bis" I found no details on how
PKIs should handle certificates renewal.
Can a user request a renewal even if his/her certificate is not about to
expiry? If yes, should we revoke the previous certificate and after which
delay?
Can a user request a renewal even if his/her certificate has expired?
I'm just lost on how implementing certificate renewal in my PKI.

Thanks,
Frédéric Giudicelli
http://www.newpki.org

Follow-Ups:
- Re: Good certificate renewal practice
  - From: Anders Rundgren

Prev by Date: Re: Request change in son-of-rfc2633
Next by Date: Re: Good certificate renewal practice
Previous by thread: Draft PKIX Agenda for 58th IETF
Next by thread: Re: Good certificate renewal practice
Index(es):
- Date
- Thread