... For the sake of generality, I would suggest using ' ' instead of '_', but it's a minor detail that doesn't affect SPKI performance. As for your claim that...
Camillo Särs
Camillo.Sars@...
Nov 26, 1997 6:46 pm
2
... a) Like I said, this may not be an appropriate application, but can anyone really say that it (or something similar) definitely isn't? b) If I'm halfway to...
Ben Laurie
ben@...
Nov 26, 1997 7:00 pm
3
... Thank you for these comments. I will work on the next draft with these in mind. - Carl (see comments interspersed below) ... I will make this clearer. The...
Carl Ellison
cme@...
Nov 27, 1997 10:48 am
4
... My proposed text for definition 2.1 on page 7 : Principal: By principal we mean a signature (private) key. In other words, a entity who is capable of...
Xavier Serret
serret@...
Nov 28, 1997 12:40 am
5
Three digital signature models are described; the original "offline" model and two newer "online" models. It is expected that the two "online" models become...
Lynn.Wheeler@...
Nov 28, 1997 5:04 pm
6
I should point out that I now work for VeriSign, the following does not represent VeriSign policy on the matter however but a personal opinion. I disagree. I...
Phillip M. Hallam-Baker
hallam@...
Nov 29, 1997 8:45 pm
7
from the continuum perspective ... i would consider that we are in violent agreement. it may be some of the perspective of the details that we differ. Also...
Lynn.Wheeler@...
Nov 29, 1997 6:31 pm
8
from the continuum perspective ... i would consider that we are in violent agreement. it may be some of the perspective of the details that we differ. Also...
Lynn.Wheeler@...
Nov 29, 1997 6:51 pm
9
... Probably. The point I'm trying to make is that it is not necessary to make any particular assumptions about how the architecture is used. There may be no...
Phillip M. Hallam-Baker
hallam@...
Nov 29, 1997 10:36 pm
10
actually the account-authority relies on the merchant to check the card to see if it is valid and that other things look correct ... since the...
Lynn.Wheeler@...
Nov 30, 1997 1:54 am
11
New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Simple Public Key Infrastructure Working Group...
Internet-Drafts@...
Dec 1, 1997 9:01 pm
12
New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Simple Public Key Infrastructure Working Group...
Internet-Drafts@...
Dec 1, 1997 9:17 pm
13
As I recall the NTP specified security feature depends on shared secret keys with no specified key distribution mechanism. Donald ... ...
Donald E. Eastlake 3rd
dee@...
Dec 2, 1997 5:09 pm
14
As I recall the NTP specified security feature depends on shared secret keys with no specified key distribution mechanism. Yes, but that isn't the point --...
Steven Bellovin
smb@...
Dec 2, 1997 5:32 pm
15
in various discussions yesterday ... one of the people expanded on the offline vis-a-vis account-authority ... expanding offline to "offline & npr" (npr - no...
Lynn.Wheeler@...
Dec 2, 1997 7:31 pm
16
... Only the developer in me is interested in the encoding differences between ASN.1 users and the rest of us. Mostly I'm interested in the semantic ...
Carl Ellison
cme@...
Dec 3, 1997 1:53 am
17
... I translate that as: the receiver (verifier) has evaluated a certificate loop for the sender (prover) once and derived a certificate result. The verifier...
Carl Ellison
cme@...
Dec 3, 1997 1:51 am
18
... These control functions might need microsecond or better precision. Yes? As one person wrote to me, off the list, it will be a long time before he has...
Carl Ellison
cme@...
Dec 3, 1997 12:02 am
19
... Lynn, thanks for the post. In SPKI terms, model 2 boils down to sending an online-test request line instead of a certificate, since the online test result...
Carl Ellison
cme@...
Dec 3, 1997 1:56 am
20
... I agree. I have been thinking about how to interact with remote process control hardware having done a bit of this in the past. I would send a macro file ...
Vinnie Moscaritolo
vinnie@...
Dec 2, 1997 11:58 pm
21
model 2 ... has receiver of the transaction forwarding the digital signature to the account-authority along with possibly other transaction information for...
Lynn.Wheeler@...
Dec 2, 1997 11:51 pm
22
an account-authority has some characteristics of a certificate authority ... it basically has registered a public key for an account (in much the same way a...
Lynn.Wheeler@...
Dec 2, 1997 11:38 pm
23
... How about Initial Trust Vector (ITV)? Trust Parameter Database (TPD)? Permission Assertion List (PAL)? Ah, the joy of TLAs... Marc ...
Marc Branchaud
marcnarc@...
Dec 3, 1997 1:39 am
24
... Finally found some time to read the latest drafts. Here are some thoughts/comments on Simple Public Key Certificates. 2.3 Name: In the paragraph Letting...
Marc Branchaud
marcnarc@...
Dec 3, 1997 1:48 am
25
On Mon, 1 Dec 1997 Internet-Drafts@... wrote: -> A New Internet-Draft is available from the on-line Internet-Drafts -> directories. This draft is a...
Ed Gerck
egerck@...
Dec 3, 1997 8:34 am
26
... No certificate is required, but the cost is enormous - a central authority is required instead. I may be missing the point here, but what has this model to...
Ben Laurie
ben@...
Dec 3, 1997 5:40 pm
27
... Yes the X.509 standard does not assume such a binding. The assumption is in its philosophy of use, and derived from the X.500 directory, which really had...
Xavier Serret
serret@...
Dec 3, 1997 7:15 pm
28
On Wed, 3 Dec 1997, Xavier Serret wrote: -> > I think that the document has serious flaws and should be ammended, as -> > well as the name SPKI no longer...
Ed Gerck
egerck@...
Dec 3, 1997 5:38 pm
29
no ... the point in the original point is that a large number of account-authorities already exist ... which add a field to the current account record for...
Lynn.Wheeler@...
Dec 3, 1997 4:53 pm
30
... Agreed. If you need a millisecond or microsecond resolution, you're probably going to be doing a large number of operations, so you can use SPKI to...
