[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: x.509 v3 Certificates and Compatbility

To: ietf-pkix@xxxxxxx, bradh_1998@xxxxxxxxx
Subject: Re: x.509 v3 Certificates and Compatbility
From: Mike Smith <mfsmith@xxxxxxxxxxxxx>
Date: Thu, 13 Aug 1998 16:54:24 -0600
Cc: S814AMA@xxxxxxxxxxxxx, S814FSB@xxxxxxxxxxxxx
Sender: owner-ietf-pkix@xxxxxxx

Domains of trust.  If your single cert came from a single source that EVERYONE (worldwide) trusted (and who indemnified ALL who relied on the certs they issued and that their authentication practices met or exceeded those in other domains of trust) and they issued all the rights to you at once, then, maybe that single cert could be practical.  However, I'm still not sure I would trust it for anything other than issuing a cert to you to do business from me.

michael
>>> brad h <bradh_1998@yahoo.com> 08/13 2:46 PM >>>
I have a question that the group might be able to help me out with. 
I've been researching this question but have not yet been able to come
up with an answer.

I was wondering why a person would have to have more than one x.509 v3
certificate?  From what I understand they should all be inter-operable.

If you have a x.509 v3 cert shouldn't you be able to add extensions
for each type of device/solution that you're trying to access (ex.
SSL, S/Mime, VPN, PKI, etc.)?

Brad



 

_________________________________________________________
DO YOU YAHOO!?
Get your free @yahoo.com address at http://mail.yahoo.com

Prev by Date: RE: German Key Usage
Next by Date: Re: FW: ldapv2-schema and CA Certificates
Previous by thread: Re: x.509 v3 Certificates and Compatbility
Next by thread: Re: x.509 v3 Certificates and Compatbility
Index(es):
- Date
- Thread