[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: A web of directories

To: "'Bob Jueneman'" <BJUENEMAN@xxxxxxxxxx>, tgindin@xxxxxxxxxx
Subject: RE: A web of directories
From: "Kurn, David" <david.kurn@xxxxxxxxxx>
Date: Mon, 22 Feb 1999 12:01:50 -0800
Cc: ietf-pkix@xxxxxxx
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxx

Bob et al

Nice generalization.  Of course, you have just re-invented a URI (or is it
URL), so why not in general allow the syntax:

 
<name-of-protocol>://<ip-address-and-maybe-portno>/<stuff-interpreted-by-the
-server

as the access to the certificate lookup service.  Obvious candidates are
ldap: http: https:

with "ldap:" probably being the default.

I have a problem with presuming any kind of default directory pointer (in
general) because you have no idea where or who will be using your
certificates.  As a metaphor, consider that I send you a snail-mail message,
and list on the top-left of the envelope a return address like:

  123 First Street
  Springfield

Now, as you may know, there are at least 26 instances of Springfield in the
US, but since you're in Utah, you should assume it means "Springfield Utah"?
Hmmm.... Bad idea.

I have no idea if there's any hope in our lifetime of affecting standards,
but at least the discussion is interesting.

-----Original Message-----
From: Bob Jueneman [mailto:BJUENEMAN@novell.com]
Sent: Monday, February 22, 1999 11:38 AM
To: Kurn, David; tgindin@us.ibm.com
Cc: ietf-pkix@imc.org
Subject: A web of directories

<snip>

Prev by Date: A web of directories
Next by Date: Re: A web of directories
Previous by thread: Re: A web of directories - Finding PKIX Servers
Next by thread: Re: A web of directories
Index(es):
- Date
- Thread