[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Last Call: Internet X.509 Public Key Infrastructure Certificate and CRL Profile to Proposed Standard

To: Paul Hoffman / IMC <phoffman@xxxxxxx>, ietf-pkix@xxxxxxx
Subject: Re: Last Call: Internet X.509 Public Key Infrastructure Certificate and CRL Profile to Proposed Standard
From: Stefan Santesson <stefan@xxxxxxxxxxx>
Date: Mon, 17 Aug 1998 15:53:57 +0200
Sender: owner-ietf-pkix@xxxxxxx

Paul,

Regarding key-usage and the latest debate it seams obvious that it is
very hard to exactly define the difference between digital signatures
and non-repudiation.

the "denial of some actions" seams very unclear as a definition since
this may be valid for most digital signature based services.

Another proposed distinguishing property for non-repudiation is "the signing 
end entity's conscious acceptance of the signed message context", which I 
believe is the true reason for defining an exclusive non repudiation key.

This definition makes the distinction much more clear and also sends
a necessary signal to restrict client behavior regarding the private
non-repudiation key.

Does it make sense to add this property to the definition?

/Stefan

At 02:10 PM 8/7/98 -0700, Paul Hoffman / IMC wrote:
>This got posted to IETF-Announce but, as you can see, they still don't have
>the current address for this list.
>
>To: IETF-Announce: ; 
>Cc: ietf-pkix@tandem.com 
>From: The IESG
><iesg-secretary@ietf.org> 
>SUBJECT: Last Call: Internet X.509 Public Key
>Infrastructure
>   Certificate and CRL Profile to Proposed Standard 
>Reply-to:
>iesg@ietf.org 
>Date: Fri, 07 Aug 1998 08:39:28 -0400 
>Sender:
>scoya@ns.cnri.reston.va.us 
>
>
>The IESG has received a request from the Public-Key Infrastructure 
>(X.509) Working Group to consider Internet X.509 Public Key 
>Infrastructure Certificate and CRL Profile 
><draft-ietf-pkix-ipki-part1-09.txt> as a Proposed Standard.
>
>The IESG plans to make a decision in the next few weeks, and solicits 
>final comments on this action. Please send any comments to the 
>iesg@ietf.org or ietf@ietf.org mailing lists by August 21, 1998.
>
>Files can be obtained via 
>ftp://ftp.ietf.org/internet-drafts/draft-ietf-pkix-ipki-part1-09.txt
>
>
>
-------------------------------------------------------------------
Stefan Santesson                <stefan@accurata.se>
Accurata Systemsäkerhet AB     
Lotsgatan 27 D                  Tel. +46-40 152211              
216 42  Malmö                   Fax. +46-40 150790              
Sweden                        Mobile +46-70 5247799

PGP fingerprint: 89BC 6C79 5B3D 591B 8547  1512 7D11 DBF4 528F 29A0
-------------------------------------------------------------------

Prev by Date: RE: ldapv2-schema and CA Certificates
Next by Date: RE: ldapv2-schema and CA Certificates
Previous by thread: Web CAP
Next by thread: Domains of Trust for PKIX
Index(es):
- Date
- Thread