[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cme@cybercash.com: Quick Survey: name certificate syntax]
-----BEGIN PGP SIGNED MESSAGE-----
At 10:00 AM 11/20/97 -0500, Ron Rivest wrote:
>------- Start of forwarded message -------
>
>Another option would be to leave the basic format the same, but to have
>a "cert-type" field with a value of "def" or "auth", where "def" is for
>a name-cert, and "auth" is for an authorization. The requirements would
>then be that a def could not have a tag field (it is implicitly (tag (*))),
>and could not have a delegate field (it implicitly allows delegation),
>whereas an auth must have a key (with no names) as an issuer, and
>must have the tag and delegation fields specified...
>
>(cert
> (cert-type def)
> (issuer (name K1 alice))
> (subject (name K2 sam mother))
> <validity fields>...
>)
>(cert
> (cert-type auth)
> (issuer K1)
> (subject (name K2 sam mother))
> (tag (read-file foo))
> (propagate)
> <validity fields>...
>)
Yes, this is another option. I personally prefer to have it in the outer
object type, but they are functionally equivalent.
- Carl
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv
iQCVAwUBNHRaiRN3Wx8QwqUtAQFGuwP/cE2dxc8pf0xtC0DRTST0kChWzCwwV8eG
psP27crhtUzAkyUqL/A8chZp6fBh70qBA6jgXvnds0AroKSU0l2spKZEhOIFst4j
soNcD8VdjzYBQfSrEcatyYn1kxvWlWae3TlLh3G/w6spVFW6ODg40+czqV8laj4J
+1Kw039g6F8=
=Vanf
-----END PGP SIGNATURE-----
+------------------------------------------------------------------+
|Carl M. Ellison cme@cybercash.com http://www.clark.net/pub/cme |
|CyberCash, Inc. http://www.cybercash.com/ |
|207 Grindall Street PGP 08FF BA05 599B 49D2 23C6 6FFD 36BA D342 |
|Baltimore MD 21230-4103 T:(410) 727-4288 F:(410)727-4293 |
+------------------------------------------------------------------+
References: