[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: OCSP - Public Key Dstribution

To: anders.rundgren@xxxxxxxxxx
Subject: Re: OCSP - Public Key Dstribution
From: Peter Sylvester <Peter.Sylvester@xxxxxxxxxx>
Date: Sun, 20 Sep 1998 19:41:58 +0200
Cc: ietf-pkix@xxxxxxx
Sender: owner-ietf-pkix@xxxxxxx

Anders,

the proposal of Denis solves a different problem. It makes the
syntax easier for the client, it doesn't require a field that
may be unnecessary. 

An interpretation of OCSP or OCVP is independant of the
syntax change. 

It is the interpretation of the RESULT that counts: 

- In OCSP you interprete 'good' as 'I have not information that it
  is NOT GOOD'.

- in OCSP you would interprete 'unknown' as 'I know that this CA
  has never issued the CA, or I do not know the CA'. 

Denis' proposal makes the proposal more lightweight.

You can even consider that an OCSP or OCVP does not need more 
than just a serial number (because it operated in a very
restricted environment of just one CA), but well, the protocol
should be able to cover a large range of applications.

Prev by Date: Re: fast review of draft-ietf-pkix-ocsp-06.txt
Next by Date: Re: Testing the ASN.1 in Part 1
Previous by thread: Re: OCSP - Public Key Dstribution
Next by thread: RE: OCSP - Public Key Dstribution
Index(es):
- Date
- Thread