[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Cert Rqsts and Key Pairs

To: ietf-pkix@xxxxxxx
Subject: Cert Rqsts and Key Pairs
From: Eric Bomarsi <ebomarsi@xxxxxxxxx>
Date: Wed, 30 Dec 1998 13:56:31 -0500
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Organization: xedia.com
Sender: owner-ietf-pkix@xxxxxxx

Is there any practical reason why a network device would
need to generate multiple certificate requests each including
the same public/private key pair?  Maybe for some reason
two cert rqsts would include the same key pair, but have
different distinguished names or extensions?

I am writing a PKI MIB and need to determine the best way
for a pkiCertRqstEntry to reference a public/private key-pair:

1) include keypair info (algorithm and length) in pkiCertRqstEntry
such that the keypair is created along with the pkiCertRqstEntry.
This would limit the key-pair use to the single pkiCertRqstEntry.

2) create a separate pkiKeyPairTable where pkiKeyPairEntries
are referenced by pkiCertRqstEntries:

2a) If always 1 pkiCertRqstEntry to 1 pkiKeyPairEntry, then
I can use the same index for both tables.

2b) Otherwise (n pkiCertRqstEntries to 1 pkiKeyPairEntry)
a different index for the pkiCertRqstTable is necessary.

Thanks in advance,
Eric Bomarsi

Prev by Date: Re: Key Identifier
Next by Date: RE: Cert Rqsts and Key Pairs
Previous by thread: [no subject]
Next by thread: RE: Cert Rqsts and Key Pairs
Index(es):
- Date
- Thread