[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [E-CARM] PKI, CAs, TTPs &c.

To: cme@Cybercash.COM
Subject: Re: [E-CARM] PKI, CAs, TTPs &c.
From: Lynn.Wheeler@firstdata.com
Date: Fri, 27 Mar 1998 06:52:50 -0800
cc: dpkemp@missi.ncsc.mil, cert-talk@structuredarts.com, cme@Cybercash.COM, spki@c2.net


i believe so .... we actually have a distinction proposed that any
digitally signed
document attesting to the validity of a public/private key pairing is a
"certificate"

... the distinction is that a client (in the bank case) sends (effectively)
a self-signed
certificate to the bank (CA) as part of certification process
(demonstrating that the client
has the private key that corresponds to the public key in the certification
process) ...
i.e. in effect all CAs that require proof by the client that the client has
the private key
... utilize some form of self-signed certificate (i.e. something signed by
a private
key attesting to something about the client's public key).

in this particular financial case, the (financial institution) CA may or
may not turn
around and issue a certificate further certifying something about the
client's
public key ... and even if they do issue such a certificate  ... it
doesn't mean that the client is required to return the certificate to the
financial institution/CA ... whenever the client is executing a digitally
signed
transaction with the issuing FI/CA.

Follow-Ups:

Re: [E-CARM] PKI, CAs, TTPs &c.

From: Carl Ellison <cme@Cybercash.COM>

Prev by Date: Re: [E-CARM] PKI, CAs, TTPs &c.
Next by Date: Re: [E-CARM] PKI, CAs, TTPs &c.
Prev by thread: Re: [E-CARM] PKI, CAs, TTPs &c.
Next by thread: Re: [E-CARM] PKI, CAs, TTPs &c.
Index(es):
- Main
- Thread