[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Confirm decision on identity handling.



Gregory Lebovitz <Gregory@netscreen.com> writes:
> I vote for disassociating ID from cert contents. (BUT, I proposed text that
> would allow for those who desired/required to be able to match if they
> wanted to).
The problem, then, of course, is that you've just made it near
impossible to make a system which works in the generic 
"I want to establish an SA with some I've never heard
of before" mode.

-Ekr

-- 
[Eric Rescorla                                   ekr@rtfm.com]
                http://www.rtfm.com/