[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: apologies and comments on SCVP

To: "Ambarish Malpani" <ambarish@xxxxxxxxxxxx>
Subject: RE: apologies and comments on SCVP
From: Mary_Ellen_Zurko@xxxxxxxx
Date: Fri, 27 Aug 1999 07:54:55 -0400
Cc: ietf-pkix@xxxxxxx

Hi Ambarish,

> ClientType1 basically wants to be able to use public key
> cryptography (and the PKIX infrastructure), without needing to
> understand all of PKIX part1, OCSP, LDAP etc. It is outsourcing
> the task of checking cert status, cert expiry, policy management
> etc to the SCVP server. The main question ClientType1 is asking
> is: "Hey, I got this cert, can I use it for application X?".
> The minimal response the server needs to provide is a signed
> yes/no. If you throw away all the extra stuff, you essentially
> have the client sending in a cert and getting back a yes/no
> answer.

Why is the best answer to this need a protocol instead of a library? It
seems if this is a technical need, you could craft a nice library with
simple APIs to do this.
     Mez

Prev by Date: RE: apologies and comments on SCVP
Next by Date: Citizenship of multi--national company employees (Was: RE: Multi-national company listing issues)
Previous by thread: RE: apologies and comments on SCVP
Next by thread: RE: apologies and comments on SCVP
Index(es):
- Date
- Thread