[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[IETF-PKIX] Revised OCSP Draft

To: IETF-PKIX@xxxxxxxxxxxxxxxx
Subject: [IETF-PKIX] Revised OCSP Draft
From: mmyers@xxxxxxxxxxxx
Date: Fri, 21 Nov 1997 17:36:45 -0700
Reply-to: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>
Sender: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>

I've revised the OCSP draft on the basis of recent comments and debate.
Notice of its availability in all the usual places should be showing up in
due course.  The revisions include:

- specification of HTTP 1.1 vs. 1.0
- elimination of the prior_to field in the request
- addition of a {produce_at, expires_on} interval in the response
- addition of requirements on the periodicity of pre-production of responses

With the exception of the first one (which has to do with 1.0 being an
Informational document while 1.1 is Standards Track), the changes address
the replay issue and scalability factors.

I left the abstraction of the trust model as it stands, although there's
some need for refinement to further reduce complexity in the non-CA trust
model.

Prev by Date: Re: [IETF-PKIX] Key Usage Profile
Next by Date: [IETF-PKIX] 7/10 draft update
Previous by thread: Re: [IETF-PKIX] Key Usage Profile
Next by thread: Re: [IETF-PKIX] Revised OCSP Draft
Index(es):
- Date
- Thread