[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [IETF-PKIX] Multiple certificates for same key?

To: IETF-PKIX@xxxxxxxxxxxxxxxx
Subject: Re: [IETF-PKIX] Multiple certificates for same key?
From: Stephen Kent <kent@xxxxxxx>
Date: Mon, 2 Mar 1998 16:25:17 -0500
Approved-by: Stephen Kent <kent@BBN.COM>
In-reply-to: <>
Reply-to: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>
Sender: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>

Stefan,

I don't think we have any prohibitions against issuing multiple certs
against the same public key.  In fact, if the certs represent renewal
certs, I'm sure we would not preclude such actions.  Since two certs can
differ in terms of extensions, validity intervals, etc., not just in terms
of subject names, this would seem an unduly restrictive prohibition in the
general case.  Thus I suscept this is more of a policy matter for a given
CA context.

Steve

References:
- [IETF-PKIX] Multiple certificates for same key?
  - From: Stefan Kelm

Prev by Date: Re: [IETF-PKIX] CMP Progression
Next by Date: Re: [IETF-PKIX] Multiple certificates for same key?
Previous by thread: [IETF-PKIX] Multiple certificates for same key?
Next by thread: Re: [IETF-PKIX] Multiple certificates for same key?
Index(es):
- Date
- Thread