[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: opens source SPKI implementations?
Thanks for that Carl just one point
> -----Original Message-----
> From: Carl Ellison
> Sent: Thursday, June 03, 1999 2:57 PM
> To: Alan Lloyd
> Cc: 'Gunther Schadow'; firstname.lastname@example.org
> Subject: Re: opens source SPKI implementations?
> Alan Lloyd wrote:
> > Carl - sorry.. I was just trying to help - which may be strange for
> > :-)
> I put my own smiley there on purpose.... :)
> > I just cannot see how one can put a PKI into "space" - it has to fit
> > onto something - and naturally because I work with CAs and Dirs -
> > are the natural background questions I ask.. If however, the SPKI is
> > being applied to Pacemakers, Iron Lungs, Jars of Leaches and Bone
> > etc - than I will have to bow out. As I just cannot stand the sight
> > blood on Public Key Material held in directory systems :-)
> Good point.
Is that the one about getting blood on certificates :-)
I am happy to discuss anything operational about PKI and if
required its relationships with directory services - including OCSP,
etc as well as policy based processing which I think needs to be done -
Its not a simple issue that will result in a new protocol or algorithm ,
but such discussions will take PKI systems forward.
Specifically as one embraces directory services and then PKIs -
one needs to change the hierachical view (the theory of directories and
PKI) to a distributed - policy based view - in line with business
operations. Its that space I think needs some attention.
thoughts are welcome and regards alan