... Hash: SHA1 Hi Phill, thanks for the comments. I'll add your note about PKIX to the page, now that you've published it on this list. For other stuff, see...
Carl Ellison
cme@...
Sep 2, 2000 10:04 pm
908
(Sorry for possible duplication) First, I want to correct the (incorrect) impression I left saying that SPKI explains why multiple certificates are...
Ron_Vered@...
Sep 5, 2000 10:43 pm
909
Now I'm revieing my plan for spki support in lsh. I have one question. I imagine that in most contexts, an spki based authorization handshake works as follows:...
Niels Möller
nisse@...
Sep 18, 2000 7:44 pm
910
... Noted. ... The data being signed is specified by the ssh spec, more precisely draft-ietf-secsh-transport-07.txt. Both server and client computes an ...
Niels Möller
nisse@...
Sep 19, 2000 6:27 pm
911
... Hash: SHA1 It might make sense to specify a challence/response protocol as part of our spec. Dwaine Clarke rolled his own for the MIT use of SPKI for...
Carl Ellison
cme@...
Sep 21, 2000 2:57 am
912
Now you're confusing me. ... A specified a challenge/response format may be a nice thing, but I don't think that would address my problem at all. As my...
Niels Möller
nisse@...
Sep 21, 2000 2:37 pm
913
... Hash: SHA1 ... Sorry -- I'll check the SSH spec before saying more. ... Version: PGP 6.5.2 iQA/AwUBOc7T23PxfjyW5ytxEQLH+gCaA2DdyxbkCvpKy1H4a8Jed+o6r3EAoLwk...
Carl Ellison
cme@...
Sep 25, 2000 5:26 am
914
Hi Carl, Sorry about this, but I've just read this email. I was busy preparing for another demo presentation, and had gone 'underground', and wasn't keeping up...
Dwaine Clarke
declarke@...
Sep 26, 2000 11:33 am
915
Andres, Sorry for the late answer. See below: Regards, Ron. ... limit. ... where ... credit-card ... get "the other brand" as well? ... What I mean is that a...
Ron_Vered@...
Sep 28, 2000 3:15 am
916
The SPKI list has at last been resurrected. I've moved it to a new and hopefully more stable home. Enjoy! Perry ... The SPKI Mailing List Unsubscribe by...
Perry E. Metzger
perry@...
Mar 28, 2001 9:42 pm
917
... Great. What is the IETF status of SPKI? I saw a notice sent to the ietf-announce list (but *not* to this list), saying that the spki wg was concluded and...
Niels Möller
nisse@...
Mar 29, 2001 7:44 am
918
... Hash: SHA1 ... My guess is that they sent that notice to the SPKI list as well, but that the SPKI list was suspended at c2.net, so we never got it. I...
Carl Ellison
cme@...
Mar 29, 2001 9:38 am
919
... A parser for canonical s-expressions (even including the debated display types) is some order of magnitude smaller and simpler than any XML-parser I've...
Niels Möller
nisse@...
Mar 29, 2001 10:47 am
920
... Hash: SHA1 ... See below -- but my problem with the current draft by paajarvi is that he changed syntax (including some element names, to make it possible...
Carl Ellison
cme@...
Mar 29, 2001 12:49 pm
921
... Just a comment on the XML proposal supporting Carl's point of view. We are using s-expressions on secure applications for GSM SIM cards (the smart cards...
amg@...
Mar 29, 2001 4:00 pm
922
... This in no way prohibits the IETF in the future from altering the status of the documents, mind you. The work continues. The working group per se hasn't...
Perry E. Metzger
perry@...
Mar 29, 2001 9:31 pm
923
It seems that recently PKIX WG had came up with the notion of Attribute Authority and Attribute Certificate that seem to principally contradict with the work...
Ron_Vered@...
Mar 29, 2001 10:01 pm
924
... Hash: SHA1 ... I'm not sure the PKIX attribute cert really contradicts what we came up with. It's clumsy and the normal mode of operation has security ...
Carl Ellison
cme@...
Mar 30, 2001 12:06 am
925
The idea of using X.500 Distinguished Names to identify the subject and/or issuer. Carl Ellison <cme@...> on 03/29/2001 04:06:07 PM Sent by: Carl...
Ron_Vered@...
Mar 30, 2001 1:03 am
926
... The core of SPKI is not the format, it's the reduction engine, and it's way to think about globally unique names. And where does ASN.1 enter the picture? I...
Niels Möller
nisse@...
Mar 30, 2001 10:12 am
927
I was referring to the idea of using X.500 Distinguished Names to identify the subject and/or issuer. While this has roots in X.509 certificates, it seems that...
Ron_Vered@...
Mar 30, 2001 6:18 pm
928
Hi all, I'm an assistant teacher in the University of Murcia (Spain), and currently I'm doing my thesis about public key infrastructures and distributed...
Oscar Cánovas Reve...
ocanovas@...
May 30, 2001 11:11 am
929
... If you want to do transport encryption and authentication, it may be a good idea to reuse an existing protocol like the SSH2 transport protocol or SSL/TLS....
Niels Möller
nisse@...
May 30, 2001 1:13 pm
930
... for SPKI. It seems a good idea, but the number of messages of this list in the last two years would indicate something. Are we going on the wrong way?...
Bob Jueneman
bjueneman@...
May 30, 2001 4:13 pm
931
... Hash: SHA1 ... Matt's library is very old and a bit fragile. I don't use it any more. Check my SPKI page for implementations. The one I prefer is the one...
Carl Ellison
cme@...
May 31, 2001 2:50 pm
932
... Hash: SHA1 ... See http://world.std.com/~cme/html/spki.html#Code for code I currently know about. If anyone on the list has URLs that should be included...
Carl Ellison
cme@...
May 31, 2001 2:57 pm
933
... Hash: SHA1 One of the problems we face with the lingering demise of X.509 PKI is that the three letter acronym "PKI" is being given a very bad name. I had...
Carl Ellison
cme@...
May 31, 2001 2:59 pm
934
Hi Carl, I'd avoid "relationship management" only in that the industry uses CRM (Customer Relationship Management) to refer to a whole panoply of "solutions"...
Tony Bartoletti
azb@...
Jun 5, 2001 1:14 am
935
I find "trust management" to be a more specific description of SPKI than "relationship management". And the goals of SPKI are not too far off from what other...
Jan Pachl
pachl@...
Jun 5, 2001 1:52 am
936
I like "risk management" or "liability management" or (more positively) "credential" or "credit" management. <RANT> The trouble with "trust" is that it's used...
