[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Certificate Cancellation Notices (CCN)

To: cme@cybercash.com
Subject: Certificate Cancellation Notices (CCN)
From: rivest@theory.lcs.mit.edu (Ron Rivest)
Date: Sat, 05 Apr 97 06:48:29 EST
Cc: blampson@microsoft.com, spki@c2.net


Carl --

I like your philosophy about replicated databases, and moving some of the
stuff Butler and I have been talking about in SDSI 1.0 into the area of
just managing replicated databases.  

But what happens when the server (who is replicating the database of
certificates for his principal) receives a request that is justified
by a properly signed certificate that is not in his database?

Is the request honored?  Or is it denied on the basis that the certificate
is "not valid because it is not in my database"?  If it is denied, what
is the requestor told?

I think the protocol for making a request, supplying a certificate chain
to justify the request, and getting a response should be part of what
we're talking about here...

Ron Rivest

Follow-Ups:

Re: Certificate Cancellation Notices (CCN)

From: Carl Ellison <cme@cybercash.com>

Prev by Date: *-forms
Next by Date: Re: Bignums
Prev by thread: Re: Certificate Cancellation Notices (CCN)
Next by thread: Re: Certificate Cancellation Notices (CCN)
Index(es):
- Main
- Thread