[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Any more comments ...

To: Bob Jueneman <bjueneman@novell.com>
Subject: RE: Any more comments ...
From: Simon Spero <ses@tipper.oit.unc.edu>
Date: Tue, 23 Apr 1996 11:06:46 -0700 (PDT)
Cc: spki@c2.org
In-Reply-To: <s17cb723.007@fromGW>
Sender: owner-spki@c2.org

On Tue, 23 Apr 1996, Bob Jueneman wrote:

> 
> >3) The SPKI certificate format must allow arbitrary fields to be 
>    signed/not-signed.  
> 
[...] 
> 
> >7) The SPK should allow multiple parties to sign a single certificate
> 
> Is that really what you mean? If so, are both signers making precisely the
> same claims as to having validated or not validated the contents of the
> certificate? Do both parties have the same Policy as to how, and under

Too much stuff to get through at once, so I thought I'd address these two 
points first; These two requirements are somewhat linked, so that it 
different parties should be able to sign different fields, or the same 
party could sign different fields. This also links in with suppor for 
policies ; policies should apply on a per-signature basis - thus a single 
certificate could include two public keys, one signed for for 
key-exchange, the other for signature only.

Simon

----
They say in  online country             So which side are you on boys
There is no middle way                  Which side are you on
You'll either be a Usenet man           Which side are you on boys
Or a thug for the CDA                   Which side are you on?
  National Union of Computer Operatives; Hackers, local 37   APL-CPIO

Prev by Date: Re: intelligent searches
Next by Date: RE: Any more comments ...
Prev by thread: RE: Any more comments ...
Next by thread: RE: Any more comments ...
Index(es):
- Main
- Thread