[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: QC Container-ID (card serial)

To: Anders Rundgren </o=Jaybis.AB/ou=JAYBIS/cn=Recipients/cn=AndersR@xxxxxxxxxx>, "ietf-pkix@xxxxxxx" <ietf-pkix@xxxxxxx>, "'SEIS-List'" <list@xxxxxxxxxxxxxxxxx>, "'Stefan Santesson'" <stefan@xxxxxxxxxxx>
Subject: Re: QC Container-ID (card serial)
From: Anders Rundgren <anders.rundgren@xxxxxxxxxx>
Date: Wed, 3 Nov 1999 11:32:16 +0100

Stefan,
Comments in line

>Lets agree to the fact that a container ID shouldn't be part of the
>subjects name.

I agree to that.   It is more like the serial number of the certificate.

>So if you want to express something about where the private key is stored
>(which could be valuable information in some cases), then I suggest that
>you use the qcStatataments extension.

>You could define a statement saying "The private key associated with this
>certificate is protected within a Smart Card that meets requirements
>defined by FIPS xxxx ....."

I do not agree as statements of the kind you describe cannot easily be interpreted by
computers without a lot of secret agreements between RPs and CAs.

For that reason I suggest that this becomes an optional extension that does
not need "interpretation" .  Like certificate serial numbers.

<snip>

/Anders

Follow-Ups:
- Re: QC Container-ID (card serial)
  - From: Juergen Brauckmann
- Re: QC Container-ID (card serial)
  - From: Stefan Santesson

Prev by Date: Fresh version of the EU draft Electronic Signature directive
Next by Date: Re: QC Container-ID (card serial)
Previous by thread: Re: QC Container-ID (card serial)
Next by thread: Re: QC Container-ID (card serial)
Index(es):
- Date
- Thread