[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Any more comments ...
On Tue, 23 Apr 1996, Bob Jueneman wrote:
>
> >3) The SPKI certificate format must allow arbitrary fields to be
> signed/not-signed.
>
[...]
>
> >7) The SPK should allow multiple parties to sign a single certificate
>
> Is that really what you mean? If so, are both signers making precisely the
> same claims as to having validated or not validated the contents of the
> certificate? Do both parties have the same Policy as to how, and under
Too much stuff to get through at once, so I thought I'd address these two
points first; These two requirements are somewhat linked, so that it
different parties should be able to sign different fields, or the same
party could sign different fields. This also links in with suppor for
policies ; policies should apply on a per-signature basis - thus a single
certificate could include two public keys, one signed for for
key-exchange, the other for signature only.
Simon
----
They say in online country So which side are you on boys
There is no middle way Which side are you on
You'll either be a Usenet man Which side are you on boys
Or a thug for the CDA Which side are you on?
National Union of Computer Operatives; Hackers, local 37 APL-CPIO