[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

OCSP - Wait A Minute!

To: "'Dan Weinstein'" <danw@xxxxxxxxxxxx>
Subject: OCSP - Wait A Minute!
From: Anders Rundgren <anders.rundgren@xxxxxxxxx>
Date: Sun, 16 Aug 1998 11:06:56 +0200
Cc: "'ietf-pkix@xxxxxxx '" <ietf-pkix@xxxxxxx>
Sender: owner-ietf-pkix@xxxxxxx

Hi Dan,
I don't see how Netscape or anybody else can do packaged product
based on the OCSP-specification.  Will it be provided as a framework
where the customer does the actual implementation?  Particularly
the provider part seems pretty impossible to implement in a totally
general way.  And that is probably the way it should be.

Anyway, I think you should put OCSP *on hold* to make it more universal.
In particular the requirement to have issuers certificates requires every
certificate user to also rely on other certificate service protocols or
other unspecified methods for acquiring issuer certificates.

OCSP could *easily* do it all!

Please take a look on

http://www.jaybis.com/specifications/pkix/ocsp.html

Regards
Anders

Follow-Ups:
- Re: OCSP - Wait A Minute!
  - From: Dan Weinstein

Prev by Date: Re: OCSP questions
Next by Date: RE: ldapv2-schema and CA Certificates
Previous by thread: OCSP questions
Next by thread: Re: OCSP - Wait A Minute!
Index(es):
- Date
- Thread