[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

clarification about RFC2560.

To: "ietf-pkix@xxxxxxx" <ietf-pkix@xxxxxxx>
Subject: clarification about RFC2560.
From: yquenechdu@xxxxxxxxxxxx
Date: Thu, 4 Mar 2004 14:37:49 +0100
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Internet Messaging Program (IMP) 3.2.1

Hi,ś 

I would like a clarification about RFC2560.

We developed a OCSP responder. this responder work with 15 differents CA. I'm
not direct contact with this 15 CA. That implies that I have intern CA which
signed my certificate of responder OCSP.

I would like to know, because item 4.2.2 is not very clear in its formulation
for me. If it is possible compared to the RFC2560, to ask the requestor to trust
my CA I cannot be certified by the 15 other CA.

The responder OCSP not have a link with the certificates for which one carries
out a request for status. In this case, one simply asks the requestor to make
trust to the AC which with signed the certificate of responder OCSP.

This case is possible ?

Thanks
Yannick Quenec'hdu

Follow-Ups:
- RE: clarification about RFC2560.
  - From: Miguel Rodriguez

Prev by Date: Hokki =)
Next by Date: RE: clarification about RFC2560.
Previous by thread: Hokki =)
Next by thread: RE: clarification about RFC2560.
Index(es):
- Date
- Thread