[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [IETF-PKIX] Multiple certificates for same key?

To: IETF-PKIX@xxxxxxxxxxxxxxxx
Subject: Re: [IETF-PKIX] Multiple certificates for same key?
From: Stephen Kent <kent@xxxxxxx>
Date: Fri, 6 Mar 1998 12:07:05 -0500
Approved-by: Stephen Kent <kent@BBN.COM>
In-reply-to: <>
References: Your message of "Thu, 05 Mar 1998 10:16:50 EST." <>
Reply-to: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>
Sender: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>

Dan,

>Let's get this straight -- the key is the identity,
>your name is a handle.  If liberty means anything, you
>can call yourself what you want hence identity-to-handle
>mapping will be many to many.  The tradeoff is your
>complexity eval of managing O(10**2) keys versus your
>exposure eval of published cross correlation of the key
>sharing amongst certs.

Wrong mailing list.  What you said above is the SPKI notion, but it's not
the PKIX notion, of the semantics of the subject name field in a
certificate.

Steve

Follow-Ups:
- Re: [IETF-PKIX] Multiple certificates for same key?
  - From: Tony Bartoletti

References:
- Re: [IETF-PKIX] Multiple certificates for same key?
  - From: Charles W. Gardiner
- Re: [IETF-PKIX] Multiple certificates for same key?
  - From: Dan Geer

Prev by Date: [IETF-PKIX] Cryptographic binding of certificates to signatures
Next by Date: [IETF-PKIX] Deletes 3/6
Previous by thread: Re: [IETF-PKIX] Multiple certificates for same key?
Next by thread: Re: [IETF-PKIX] Multiple certificates for same key?
Index(es):
- Date
- Thread