[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: SCVP-01

To: "'Ambarish Malpani'" <ambarish@xxxxxxxxxxxx>, "'Salz, Rich'" <SalzR@xxxxxxxxxx>
Subject: RE: SCVP-01
From: Alan Lloyd <Alan.Lloyd@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 31 Aug 1999 17:21:23 +1000
Cc: ietf-pkix@xxxxxxx

	snip
> Yes, we could put in a bunch of changes in OCSP to make it
> work, but you would end up changing the semantics of a large
> part of OCSP.
> 
	its best to add a few features to a trusted transport that
serves a common operational function (cert status and validation) than
reinvent the whole box and dice again - re key management, protocol hddr
formats, routing references, etc, etc - and also introduce compatibility
and interoperability when both technologies are used in the same
operational system. 

	One only has to think of the customer and what they want...
simpler systems, less code changes, less protocols, less databases and
less configuration and more capability and trust  -  to see what the
logical answer is..

	Why does OCSP and LDAP have extensions... Its not so we can
ignore them and produce another YAP with optional extensions. that wont
be used...

	Just my own views - but I do see a lot of customers and
operational systems :-)

	regards alan

Follow-Ups:
- RE: SCVP-01
  - From: Paul Hoffman / VPNC
- RE: SCVP-01
  - From: Peter Williams

Prev by Date: Comments on RFC 2459
Next by Date: RE: SCVP-01
Previous by thread: RE: SCVP-01
Next by thread: RE: SCVP-01
Index(es):
- Date
- Thread