[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: single <auth> per cert (was Re: "auth" --> "tag" ?? )

At 11:44 PM 4/1/97 -0800, Bill Frantz wrote:
>It seems to me that the only programs interested in the meaning of auth
>tags will be the requesting program and the program validating that
>request.  Both of them can be assumed to have an application level of what
>intersection means for the tags in question.  Are there any other programs
>who have such an interest?

Technically, the only program which cares is the verifier.  Any user 
(requesting program?) just handles a blob he doesn't need to look inside.  
He can be told some other way what it's good for, although the ability to 
understand the tag might let him use that.

If someone else - some intermediate process -- issues certificates
with that tag, it might be polite for the verifier to tell it how
those tags will be interpreted.

 - Carl

|Carl M. Ellison  cme@cybercash.com   http://www.clark.net/pub/cme |
|CyberCash, Inc.                      http://www.cybercash.com/    |
|207 Grindall Street   PGP 2.6.2: 61E2DE7FCB9D7984E9C8048BA63221A2 |
|Baltimore MD 21230-4103  T:(410) 727-4288  F:(410)727-4293        |