[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [IETF-PKIX] OCSP using SSL/https

To: IETF-PKIX@xxxxxxxxxxxxxxxx
Subject: Re: [IETF-PKIX] OCSP using SSL/https
From: Carlisle Adams <carlisle.adams@xxxxxxxxxxx>
Date: Wed, 3 Dec 1997 14:04:06 -0500
Reply-to: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>
Sender: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>

Hi Phill,

>----------
>From:  Phillip M Hallam-Baker[SMTP:pbaker@VERISIGN.COM]
>Sent:  Wednesday, December 03, 1997 11:55 AM
>To:    IETF-PKIX@LISTS.TANDEM.COM
>Subject:       Re: [IETF-PKIX] OCSP using SSL/https
>
>Since we don't have a spec proposed for such a transport
>I think that all we need at most doat this stage is put in some
>wording to allow the possibility of relying on some other
>proof of authenticity by prior agreement of both parties in
>which case only the raw data need be sent.

This sounds a bit dangerous to me.  It may be too easy for developers to
use this as an excuse for skipping the authentication step most of the
time...


--------------------------------------------
Carlisle Adams
Entrust Technologies
cadams@entrust.com
--------------------------------------------

Prev by Date: Re: [IETF-PKIX] OCSP using SSL/https
Next by Date: Re: [IETF-PKIX] OCSP using SSL/https
Previous by thread: Re: [IETF-PKIX] OCSP using SSL/https
Next by thread: Re: [IETF-PKIX] OCSP using SSL/https
Index(es):
- Date
- Thread