[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [IETF-PKIX] OCSP v CRLs over HTTP

To: mmyers@xxxxxxxxxxxx
Subject: Re: [IETF-PKIX] OCSP v CRLs over HTTP
From: Marc Branchaud <marcnarc@xxxxxxxxx>
Date: Thu, 11 Dec 1997 09:26:52 -0800 (PST)
Cc: IETF-PKIX@xxxxxxxxxxxxxxxx
In-reply-to: <>

-----BEGIN PGP SIGNED MESSAGE-----


On Tue, 9 Dec 1997 mmyers@verisign.com wrote:
> 
> Marc,
> 
> My interpretation of your requirement implies the CA operate in a fashion
> that enables the "false revocation" attack Carlisle earlier identified.  I
> may be misunderstanding your requiremment however.  May I ask that you
> express it more precisely?
> 
> Mike
> 

I don't remember the specifics about Carlisle's attack, and the archive on
ftp.tandem.com seems to end in September.  Could you give me a brief
refresher?

		Marc

+------------------------------------------------------------------------+
 Marc Branchaud                                       \/
 Chief PKI Architect                                  /\CERT SOFTWARE INC.
 marcnarc@xcert.com        PKI References page:              www.xcert.com
 604-640-6227          www.xcert.com/~marcnarc/PKI/
+------------------------------------------------------------------------+
  PGP key fingerprint:  60 11 4B 9D 4E E5 2F 47  BD C5 C2 BF 26 DF 5A E1

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQB1AwUBNJAiXlrdFXNdDxPlAQFzOwMAki62fVGf1Apcjy7qrz7JJrEAj01y14CF
kaQouGcG8BEMOnv11z4DYFhSnfcebSMlxWNetcWqkn4N6cSnrGMShHCErjftQA23
7gKQXtB7JfVQbaI5cazrUpwwFcPPR9xp
=zNIR
-----END PGP SIGNATURE-----

References:
- Re: [IETF-PKIX] OCSP v CRLs over HTTP
  - From: mmyers

Prev by Date: Re: Critical extensions and Policy OIDs
Next by Date: Re: [IETF-PKIX] Critical extensions and Policy OIDs
Previous by thread: Re: [IETF-PKIX] OCSP v CRLs over HTTP
Next by thread: [IETF-PKIX] OCSP using SSL/https
Index(es):
- Date
- Thread