[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: digital certificate

To: <sridharj@future.futsoft.com>, "Ipsec" <ipsec@lists.tislabs.com>
Subject: Re: digital certificate
From: Paul Hoffman / VPNC <paul.hoffman@vpnc.org>
Date: Mon, 11 Jun 2001 14:08:16 -0700
In-Reply-To: <LNBBIJIFKLJHJLNIGIMGEEKHHNAB.sridharj@future.futsoft.com>
References: <LNBBIJIFKLJHJLNIGIMGEEKHHNAB.sridharj@future.futsoft.com>
Sender: owner-ipsec@lists.tislabs.com

At 10:23 PM +0530 6/11/01, Sridhar J wrote:
>	Is it a common practise / complusory that a  CERTIFICATE AUTHORITY
>will use the same cryptographic algorithm to sign the certificate for the
>public key info of a user which it is authenticating ...???

It is common practice but not at all compulsory. At the last bakeoff, 
a few vendors tested with accepting DSA certs under an RSA root and 
it worked fine.

--Paul Hoffman, Director
--VPN Consortium

References:

digital certificate

From: "Sridhar J" <sridharj@future.futsoft.com>

Prev by Date: RE: IPSEC Security Gateways & NAT
Next by Date: Re: IPSEC Security Gateways & NAT
Prev by thread: digital certificate
Next by thread: prf's in IKE Phase 2
Index(es):
- Main
- Thread