Re: QC Container-ID (card serial)

[Stefan Santesson <stefan@xxxxxxxxxxx>]

I don't agree.

I think your suggestion is to far away from the scope of this profile.

/Stefan

At 11:32 AM 11/3/99 +0100, Anders Rundgren wrote:
>Stefan,
>Comments in line
>
>>Lets agree to the fact that a container ID shouldn't be part of the
>>subjects name.
>
>I agree to that.   It is more like the serial number of the certificate.
>
>>So if you want to express something about where the private key is stored
>>(which could be valuable information in some cases), then I suggest that
>>you use the qcStatataments extension.
>
>>You could define a statement saying "The private key associated with this
>>certificate is protected within a Smart Card that meets requirements
>>defined by FIPS xxxx ....."
>
>I do not agree as statements of the kind you describe cannot easily be 
>interpreted by
>computers without a lot of secret agreements between RPs and CAs.
>
>For that reason I suggest that this becomes an optional extension that does
>not need "interpretation" .  Like certificate serial numbers.
>
><snip>
>
>/Anders

-------------------------------------------------------------------
Stefan Santesson                <stefan@accurata.se>
Accurata AB                     http://www.accurata.se
Slagthuset                      Tel. +46-40 108588              
211 20  Malmö                   Fax. +46-40 150790              
Sweden                        Mobile +46-70 5247799

PGP fingerprint: 89BC 6C79 5B3D 591B 8547  1512 7D11 DBF4 528F 29A0
-------------------------------------------------------------------