[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: NEW Data type for certificate selection ?

To: "'Ed Gerck'" <egerck@xxxxxxxxxxxxxxxxxxx>
Subject: RE: NEW Data type for certificate selection ?
From: Anders Rundgren <anders.rundgren@xxxxxxxxxx>
Date: Fri, 2 Oct 1998 07:59:59 +0200
Cc: "'ietf-pkix@xxxxxxx '" <ietf-pkix@xxxxxxx>
Sender: owner-ietf-pkix@xxxxxxx

Ed,
>The first usual misconception here is when people confuse trust in a
>certificate to trust in a certificate's contents -- too quite
>different animals. In fact, the first is directly defined under X.509
>or PKIX but the second depends on the CPS, which depends on each CA,
>which systematically negate it.

Systematically negate it?

Sorry, I fail to understand why it is technically, legally, etc. impossible to create trusted
CA services that issues certificates with contents that can actually be used.  But as I said earlier,
Swedes are probably morons as we just do it anyway in spite of the fact that it does not work :-)

Anders

Follow-Ups:
- RE: NEW Data type for certificate selection ?
  - From: Tony Bartoletti
- RE: NEW Data type for certificate selection ?
  - From: Ed Gerck

Prev by Date: Re: NEW Data type for certificate selection ?
Next by Date: RE: NEW Data type for certificate selection ?
Previous by thread: RE: NEW Data type for certificate selection ?
Next by thread: RE: NEW Data type for certificate selection ?
Index(es):
- Date
- Thread