[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [IETF-PKIX] Multiple certificates for same key?

To: IETF-PKIX@xxxxxxxxxxxxxxxx
Subject: Re: [IETF-PKIX] Multiple certificates for same key?
From: Mark Shuttleworth <marks@xxxxxxxxxx>
Date: Thu, 5 Mar 1998 11:01:32 +0200
Approved-by: jean.pawluk@TANDEM.COM
In-reply-to: <>
Reply-to: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>
Sender: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>

> The problem, to the extent that there is one, is that the X.509 definition of the
> "sign" macro does not provide any means of defining precisely which
> certificate in particular should be used to validate a particular signature,
> and thereby associate a particular set of name/rights attributes with that
> signature.

Fortunately, the authorityKeyIdentifier extension let's us do just that ;)

--
Mark Shuttleworth
Thawte Consulting

References:
- Re: [IETF-PKIX] Multiple certificates for same key?
  - From: Bob Jueneman

Prev by Date: [IETF-PKIX] OCSP draft 2
Next by Date: Re: [IETF-PKIX] Multiple certificates for same key?
Previous by thread: Re: [IETF-PKIX] Multiple certificates for same key?
Next by thread: Re: [IETF-PKIX] Multiple certificates for same key?
Index(es):
- Date
- Thread