[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: NEW Data type for certificate selection ?

To: Stefan Santesson <stefan@xxxxxxxxxxx>
Subject: Re: NEW Data type for certificate selection ?
From: "Olle E. Johansson" <oej@xxxxxxxxx>
Date: Thu, 01 Oct 1998 09:16:27 +0200
Cc: Ed Gerck <egerck@xxxxxxxxxxxxxxxxxxx>, David Horvath <dave@xxxxxxxxxxxxx>, Alan Lloyd <Alan.Lloyd@xxxxxxxxxxxxxxxxxxxx>, "'ietf-pkix@xxxxxxx '" <ietf-pkix@xxxxxxx>, "'list@xxxxxxxxxxxxxxxxx '" <list@xxxxxxxxxxxxxxxxx>, "'pgut001@xxxxxxxxxxxxxxxxx '" <pgut001@xxxxxxxxxxxxxxxxx>
Organization: WebWay AB
References: <>
Sender: owner-ietf-pkix@xxxxxxx

Stefan Santesson wrote:
 
> 1) In SSL the server may select preferred client certificate by Issuer DN,
> and "certificate type"
> 2) You suggest hashed SSN (social security numbers) using "salt"
> 
Even if I don't know all the details in your scheme, I would like to put
up a privacy warning here. A user might not want _any_ server to search
the database of user certificates. The user might have certificates he
doesn't want a server, or rather the company running the server, to know
about. 

It's like cookies...

Regards,
Olle


-- 
Olle E. Johansson, oej@webway.se
Mobile +46 70 593 68 51, phone +46 8 590 722 40, fax +46 8 590 759 80
WebWay AB, Sweden, http://www.webway.se

Follow-Ups:
- Re: NEW Data type for certificate selection ?
  - From: Ed Gerck

References:
- Re: NEW Data type for certificate selection ?
  - From: Stefan Santesson

Prev by Date: RE: NEW Data type for certificate selection ?
Next by Date: Re: NEW Data type for certificate selection ?
Previous by thread: Re: NEW Data type for certificate selection ?
Next by thread: Re: NEW Data type for certificate selection ?
Index(es):
- Date
- Thread