[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: On-line revocation checking
At 05:38 PM 1/3/97 +0100, Francisco Fernandez Massaguer wrote:
>
> In the Part I draft of PKIX (draft-ietf-pkix-ipki-part1-03.txt) document,
>(end of 3.3 section) it is considered the possibility of (future ?) on-line
>recovation checking approaches.
>
>I have reviewed:
>
> draft-ietf-pkix-ipki-part1-03.txt (Part I),
> draft-ietf-pkix-polfmwk-00.txt (Policy), and
> draft-ietf-pkix-ipki3cmd-02.txt (Part III)
>
>and apart from the mentioned 3.3 section in Part I and a little note in
>section 6.6.1 in the Policy document, I haven't found anything more about
>this theme.
>
>Is or will be this point considered in greater detail on some other of the
>various draft parts or versions of PKIX ?.
The original (and still current) plan was to have a number of parts. Part 2
is intended to cover client access protocols for other people's certificates
(cert and crl retrieval, online validation, etc.) (as opposed to part 3
which include client protocols for one's own cert). Work on this hasn't
started in any significant way yet. Since some work is going on now in
piloting online validation mechanisms, I would hope that based on the
results of such efforts we would attempt to capture a successful effort in
part 2 rather than try to invent from paper. I'll admit there's no clear
timetable for the document (we're looking for volunteers).
>Thanks.
>Francisco Fernandez.
>------------------------------------------------------------------------
>Francisco Fernandez Massaguer E-mail: ffernandez@ait.uvigo.es
>ETSI Telecomunicacion Vigo Tel: +34-86-812181
>Vigo, SPAIN Fax: +34-86-812116
>------------------------------------------------------------------------
>
Thanks,
Dave Solo