[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: response to unauthorized OCSP reques

To: ietf-pkix@xxxxxxx
Subject: Re: response to unauthorized OCSP reques
From: Andreas Berger <aberger@xxxxxxxxxxxxxxxx>
Date: Tue, 11 Aug 1998 10:39:00 +0200
Cc: Graham Bland <gbland@xxxxxxxxx>
References: <>
Sender: owner-ietf-pkix@xxxxxxx

Graham Bland wrote:
> 
> There is a sigRequired error response which specifically covers this
> situation.
I interpreted it as: A rquester sends an unsigned request. The OCSP
responder does not want to act on this request, since it is unsigned.
Therefore it answers with sigRequired, advising the requester to
re-issue the request but this time signed.

An unauthorized request sounds sensible to me. It can also be used if
the responder bases its decision not to serve the request on other data
(i.e. the request is unsigned).

Andreas
-- 
Fifty-three percent of Fortune 1000 executives think the
Arch Deluxe is something that helps to run a computer.
-- Jericho Communications

References:
- RE: response to unauthorized OCSP reques
  - From: Graham Bland

Prev by Date: RE: response to unauthorized OCSP reques
Next by Date: RE: Major comments on OCSP (and LDAP Sec
Previous by thread: RE: response to unauthorized OCSP reques
Next by thread: Re: response to unauthorized OCSP reques
Index(es):
- Date
- Thread