[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: me tarzan- me jane suggested text change
At 1:14 PM -0500 3/25/03, jpickering@creeksidenet.com wrote:
>Per the SF discussion surrounding whether the ID payload must match the ID
>in a presented cert, I would like to add my vote for increased
>clarity. To do so,
>I believe the following text represents the spirit of the WG:
>
>In section 2.15, to the sentence that states:
>
>"Optionally, messages 3 and 4 MAY include a certificate, or
>certificate chain providing evidence
>that the key used to compute a digital signature belongs to the name
>in the ID payload."
>
>Add the following"
>
>" The exact requirement for mapping the name in the ID payload to an
>acceptable key is a local matter
>and outside the scope of this document".
>
>Jeff
I don't think the latter text helps, since it does not tell a peer
whether the match is required or not, and thus interoperability
problems will persist. I think Paul Hoffman made this point in his
comments at the mic.
Steve