[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

SPKI implementation notes & proving the SPKI correct

  I'm writing a SPKI implementation. I'm hoping to get it out reasonably
  soon (weeks). Carl Ellison is also in process of implementing this.
  I'm afraid that a complete implementation of the SPKI certificate
  parsing and auth logic is too big to fit in a RFC. 

  Maybe I (together with everyone interested) should start a "SPKI
  Implementation Notes" document ? It would document the standard
  algorithms for doing various things and would include some compliance
  testing material.

  The main certificate text would define the certificate contents on an
  abstract level, while this "implementation notes" or "spki standard
  operation" document would bring it down to almost code level.

  Maybe we want to have four separate (RFC) documents in the end:
    1. Certificate
    2. Protocol
    3. S-Expressions
    4. Implementation Notes

  As the certificate draft alone is currently at 82 pages, the SPKI has
  grown beyond simple. And it will apparently continue to grow.

- Markku-Juhani Saarinen <mjos@ssh.fi>