[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: challenges for the IPSEC group

To: Steve Bellovin <smb@research.att.com>
Subject: Re: challenges for the IPSEC group
From: Stephen Kent <kent@bbn.com>
Date: Fri, 26 Jul 1996 18:44:18 -0400
Cc: ipsec@TIS.COM
Sender: ipsec-approval@neptune.tis.com

Steve,

        Just a note that the X.509m v3 certificates no longer require the
use of distinguished names, at all.  There is explicit support for both IP
addresses and for DNS names (as well as RFC 822 email addresses, for
individual user names).  So, one could use this certificate format to
represent the various name forms that you have pointed out are appropriate,
in different contexts, for use with IPSEC.

Steve

Prev by Date: Re: DNSSEC for IPSEC?
Next by Date: Re: DNSSEC for IPSEC? -- or, how to exploit DNSSEC
Prev by thread: Re: challenges for the IPSEC group
Next by thread: IPsec Implementation Summary (7/23/96)
Index(es):
- Main
- Thread