[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: IKEV2: Issue #4 Revised Identity

To: Pekka Riikonen <priikone@iki.fi>
Subject: Re: IKEV2: Issue #4 Revised Identity
From: Eric Rescorla <ekr@rtfm.com>
Date: 12 Feb 2003 19:59:05 -0800
Cc: "Theodore Ts'o" <tytso@mit.edu>, ipsec@lists.tislabs.com
In-Reply-To: <Pine.NEB.4.51.0302121418220.28543@otaku.Xtrmntr.org>
References: <200302121127.h1CBR0of094935@givry.rennes.enst-bretagne.fr><Pine.NEB.4.51.0302121418220.28543@otaku.Xtrmntr.org>
Reply-To: EKR <ekr@rtfm.com>
Sender: owner-ipsec@lists.tislabs.com
User-Agent: Gnus/5.0808 (Gnus v5.8.8) XEmacs/21.1 (Cuyahoga Valley)

Pekka Riikonen <priikone@iki.fi> writes:
> All this would require revising the specs for CR payload handling, and
> addition of new Certificate Encoding types.  The benefits is that no new
> payloads are introduced, the use of CR payload is made explicit, new
> encoding types are easy to add, and the verification of whether the cached
> cert is correct or not can be done.  Whether or not changing/adding this
> sort of thing would be acceptable, I don't know. :)
I think this is a good idea.

-Ekr

-- 
[Eric Rescorla                                   ekr@rtfm.com]
                http://www.rtfm.com/

References:
- Re: IKEV2: Issue #4 Revised Identity
  - From: Francis Dupont <Francis.Dupont@enst-bretagne.fr>
- Re: IKEV2: Issue #4 Revised Identity
  - From: Pekka Riikonen <priikone@iki.fi>

Prev by Date: Re: Ready for IETF Last Call draft-ietf-ipsec-dpd-01.txt
Next by Date: Re: IKEV2: Issue #4 Revised Identity
Prev by thread: Re: IKEV2: Issue #4 Revised Identity
Next by thread: Re: IKEV2: Issue #4 Revised Identity
Index(es):
- Date
- Thread