[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: comments on PKIX-1

To: "'ietf-pkix@xxxxxxxxxx'" <ietf-pkix@xxxxxxxxxx>, "'peter@xxxxxxxxxxxx'" <peter@xxxxxxxxxxxx>
Subject: RE: comments on PKIX-1
From: Carlisle Adams <Cadams@xxxxxxxxxxx>
Date: Thu, 20 Mar 1997 10:04:40 -0500
Encoding: 70 TEXT

Peter,

>----------
>From: 	peter@verisign.com[SMTP:peter@verisign.com]
>Sent: 	Wednesday, March 19, 1997 6:29 PM
>To: 	ietf-pkix@tandem.com
>Subject: 	comments on PKIX-1
>
>Tim,
>
>here are some comments on PKIX-1 id 03.
>
>
>" This confidence is obtained
>   through the use of public key certificates, which are data structures
>   that bind public key values to subject identities."
>
>This explanation contradicts the mails of Entrust folk on the list.

You know very well that I have said that a certificate *explicitly*
(i.e., syntactically) binds an identity to a public key and *implicitly*
(i.e., semantically) binds that identity to the corresponding private
key.  It is fine to make either statement as long as it is understood
that both must be in force for a certificate to be meaningful.  I have
been stressing the latter statement on this list because some people
seem to have missed this point.

There is no contradiction in the above quote (particularly because it is
talking about data structures -- syntax).


>3.4  Operational Protocols
>
>The term "oeprational protocol" is being used precisly here, in a manner
>different to that now in use by Denny and Carlise on the list.

Peeter, our names are "Denis" and "Carlisle".  Just in case we meet in
Memphis, it might be helpful if we all have our names straight...


>  Part 3 of the PKIX series of specifications defines a set of standard
>   message formats supporting the above functions.  The protocols for
>   conveying these messages in different environments (on-line, e-mail,
>   and WWW) are also specified.
>
>where are they specified?

If we can ever settle the other issues that have taken up so much of
everyone's bandwidth (namely PKCS #7 and POP), perhaps there will be
time to start addressing some of these other things...





By the way (and I ask this on behalf of quite a number of people),
"Peter, would you PLEASE get your hands on a spell-checker?"  I
understand they're available on many different platforms now  :-)

If you can't seem to find one no matter how hard you look, you might
consider reading/correcting what you've written before sending it out on
public mailing lists.  Correct spelling, and maybe even some proper
punctuation, would really make it easier for people to understand what
you're trying to say...

--------------------------------------
Carlisle Adams
Entrust Technologies
cadams@entrust.com
---------------------------------------

Prev by Date: Re: private PKIX-1 extensions
Next by Date: Re: comments on PKIX-1
Previous by thread: comments on PKIX-1
Next by thread: Re: comments on PKIX-1
Index(es):
- Date
- Thread