I sent this to Dr. Rivest but as I have received no response I am formarding this to the list. Comments are welcome. Best Regards, Antonio. ...
Antonio Mana Gomez
amg@...
Jun 4, 1998 11:51 am
456
... Is appending the nonce good enough, or should you really prepend as well? The problem is that lots of applications can potentially be tricked by sign(...
Bill Stewart
bill.stewart@...
Jun 8, 1998 6:05 pm
457
... this is a great point! well taken.. I will fix this in the protocol.. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Vinnie Moscaritolo...
Vinnie Moscaritolo
vinnie@...
Jun 8, 1998 6:05 pm
458
... I am working on this draft with Vinnie and have an idea on how to solve this. I talked with him briefly about it. Basically, the response should be another...
Tony Mione
mione@...
Jun 9, 1998 2:38 pm
459
A network entity such as a router may require an X.501 DistinguishedName to utilize LDAP directory serices or generate PKCS certificate requests. It's possible...
Eric Bomarsi
ebomarsi@...
Jun 9, 1998 10:51 pm
460
An updated version of the paper "Towards a Real-World Model of Trust: Reliance on Received Information" is available at http://www.mcg.org.br/trustdef.htm This...
Ed Gerck
egerck@...
Jun 23, 1998 2:32 pm
461
Hello, May I send you information about a product for making Web sites super-dynamic without CGI programming? Our product is for creating: Shopping carts *...
ginaw@...
Jun 24, 1998 7:35 pm
462
Hello all. In identity based systems like X.509, the life after certificate expiration and key compromise is just and administrative issue. The "only" things...
Xavier Serret
serret@...
Jun 25, 1998 10:55 am
463
... This is a very timely remark since, as some of this list may have followed, this issue is being discussed at depth in cert-talk, mcg-talk and dig-sig. The...
Ed Gerck
egerck@...
Jun 25, 1998 5:08 pm
464
It was sent to spki@..., an ietf discussion list. I think we would all appreciate the courtesy of being removed from your list. Thank you. Bob ... Please...
Bob Jueneman
BJUENEMAN@...
Jun 25, 1998 10:32 pm
465
Carl, I think I see your point. But what I had in mind is the reverse problem. I will try to explain myself: I think that at the end what we are trying to do...
Xavier Serret
serret@...
Jun 27, 1998 8:18 pm
466
... [...] ... [...] ... Actually, even if there were some universally agreed global name for people, X.509 still relies on keys. My thinking had been that if...
Carl Ellison
cme@...
Jun 27, 1998 9:25 pm
467
... The claims above are not true. X.509's use of names relies on keys. This is because there is no universally agreed global name for people. There is also...
Carl Ellison
cme@...
Jun 27, 1998 9:30 pm
468
... Yes, it did. ... There is no way that the entity loses its existence by loss of a public key. A public key is simply a mathematically constrained randomly...
Carl Ellison
cme@...
Jun 28, 1998 7:09 pm
469
Hi guys, My name is Olivier Dellicour. I'm 24, I'm Belgian and I live in Brussels. I'm a Business Ingeneer student and like every students around the world I...
DoWneR@...
Jun 28, 1998 1:56 pm
470
olivier there is tons of stuff out there that you can easily dig up with the search engines. however, what i am going to give you are some meta-sites that you...
Judie Mulholland
judiemul@...
Jun 28, 1998 4:03 pm
471
... Olivier: Comparing SPKI with X.509 is like comparing apples and speedboats. In spite of its name, SPKI is NOT a PKI and does not allow a PKI to be built...
Ed Gerck
egerck@...
Jun 28, 1998 8:41 pm
472
also note that for the most part ... the x.509 genre are about public certificate infrastructures (i.e. PCIs) ... effectively the ability to represent the...
Lynn.Wheeler@...
Jun 28, 1998 11:26 pm
473
Hi, Here is a professor of UCL, Louvain-la-Neuve: I suppose that everybody here is enough smart not to write his final work for him. So here are some clues: -...
Jean-Jacques Quisquater
Quisquater@...
Jun 29, 1998 9:25 am
474
... Ed, I think we need to re-think these conclusions. I have been unable to detect these differences between SPKI and X.509 -- unless you define "PKI" as...
Carl Ellison
cme@...
Jun 29, 1998 2:46 pm
475
... Lynn, I'm not familiar with the term PCI. Did you invent it? Do you have a full definition? - Carl ... Version: PGP for Personal Privacy 5.5.3 ...
Carl Ellison
cme@...
Jun 29, 1998 2:46 pm
476
Of course I need to do a little munging of my own web site ... payment taxonomy & glossary is currently: public key infrastructure (PKI) Public and private...
Lynn.Wheeler@...
Jun 29, 1998 4:30 pm
477
i just noticed it as the letters was flowing off my fingures ... (lower-case) public key infrastructure is where half of asymmetric key pair is made available...
Lynn.Wheeler@...
Jun 29, 1998 3:59 pm
478
... Much of the definition of "PKI" has been borrowed from 10+ years of development of X.500/X.509/PEM, so I probably shouldn't be surprising that terms like...
Carl Ellison
cme@...
Jun 29, 1998 5:01 pm
479
... Actually for a final year project thesis, impartial, disinterested research is probably not expected. Being able to put together a coherent argument on a...
Phillip Hallam-Baker
hallam@...
Jun 29, 1998 5:53 pm
480
... we might..especially when the X.509 folks get tired enough of ASN.1 :) Actually, I can imagine an X.509v4 that would facilitate such a convergence. All it...
Carl Ellison
cme@...
Jun 29, 1998 6:42 pm
481
... Carl: I do not want to beat an old horse twice ;-) but what you affirmed above was denied even in this list. First, the DN scheme of X.500 was...
Ed Gerck
egerck@...
Jun 29, 1998 8:10 pm
482
... PKI is perhaps often understood as a public infrastructure (like the road system) that must allow Bob to: 1. obtain Alice's public-key K *and*, 2. rely...
Ed Gerck
egerck@...
Jun 29, 1998 9:05 pm
483
... That sounds like 'turn X.509 into SPKI' and not 'X.509 becomes superset of SPKI'. Actually there are folk who have argued for NULL subject names before. ...
