[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [IETF-PKIX] OCSP at IETF

To: IETF-PKIX@xxxxxxxxxxxxxxxx
Subject: Re: [IETF-PKIX] OCSP at IETF
From: Denis Pinkas <Denis.Pinkas@xxxxxxxx>
Date: Fri, 17 Apr 1998 12:36:04 -0700
Approved-by: Denis Pinkas <Denis.Pinkas@BULL.NET>
Organization: Bull
References: <> <>
Reply-to: Denis.Pinkas@xxxxxxxx
Sender: "IETF X.509-based public key infrastructure mailing list" <IETF-PKIX@xxxxxxxxxxxxxxxx>

Jeff Weinstein wrote:
>
> I strongly agree with Stephen on this.  One great value that OCSP
> services could add would be to provide historical as well as current
> revocation information.
>
>         --Jeff

I strongly agree with both Stephen and Jeff on this.

Denis

> Stephen Farrell wrote:
> >
> > Hi Mike,
> >
> > Not sure if this needs a change, but...
> >
> > Part 1 now has a time input to the cert validation
> > algorithm (the time at which the cert should have been/be
> > valid).
> >
> > If OCSP is to fit seamlessly into this algorithm then you'll
> > need an extension to the request so that the response doesn't
> > refer to the current time, but to the time which was input
> > to the cert validation alg.
> >
> > Regards,
> > Stephen.

--
      Denis Pinkas     Bull S.A.          mailto:Denis.Pinkas@bull.net
      Rue Jean Jaures  B.P. 68            Phone : 33 - 1 30 80 34 87
      78340 Les Clayes sous Bois. FRANCE   Fax  : 33 - 1 30 80 33 21

References:
- Re: [IETF-PKIX] OCSP at IETF
  - From: Stephen Farrell
- Re: [IETF-PKIX] OCSP at IETF
  - From: Jeff Weinstein

Prev by Date: Re: [IETF-PKIX] Key Identifiers
Next by Date: Re: [IETF-PKIX] OCSP Status Information on a Certificate
Previous by thread: Re: [IETF-PKIX] OCSP at IETF
Next by thread: Re: [IETF-PKIX] OCSP at IETF
Index(es):
- Date
- Thread