[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: fast review of draft-ietf-pkix-ocsp-06.txt

To: ietf-pkix@xxxxxxx, danjw1@xxxxxxxxxxx
Subject: Re: fast review of draft-ietf-pkix-ocsp-06.txt
From: Peter Sylvester <Peter.Sylvester@xxxxxxxxxx>
Date: Fri, 18 Sep 1998 11:02:53 +0200
Sender: owner-ietf-pkix@xxxxxxx

> I thought the issue with this was that in a case of a request where the
> certificate was sent in place of the certID, a response could not be
> formed unless the responder already had the issuer cert (or at least
> knew its key hash).  This has been dealt with, since request now must
> have a certID for each requested cert.  Was there some additional issue
> I wasn't aware of?

The original text provided to USE a certificate and nothing else
to form a request. This is no longer possible.

CertID in its current form cannot be used as a replacement for a
certificate in the case where the client does not have the issuer cert.
 
The syntax for CertID has not been discussed in the context where
this is the ONLY way to identify a cert. 

Peter

Prev by Date: Re: fast review of draft-ietf-pkix-ocsp-06.txt
Next by Date: Re: fast review of draft-ietf-pkix-ocsp-06.txt
Previous by thread: Re: fast review of draft-ietf-pkix-ocsp-06.txt
Next by thread: Re: fast review of draft-ietf-pkix-ocsp-06.txt
Index(es):
- Date
- Thread