Re: Principles and Principals

From: "Bonatti Chris" <bonattic(_at_)ieca(_dot_)com>
     This was one of the reasons that the attribute certificate
emerged in X.509.  (There were other reasons too.)  It allowed a
wide range of this "non-principal" binding data to be abstracted
from the main structure.


Yes, this capability "tag" model is also the heart of SPKI.
Certification tags are signed separately.  The principal stays the same.

     There is great strength in this kind of modularity.  We
should consider this concept in Open-PGP.

PGP already has this modularity.  Each username is signed separately.
A particular username signature can be separately expire or be revoked.
The fields are all there!

WSimpson(_at_)UMich(_dot_)edu
    Key fingerprint =  17 40 5E 67 15 6F 31 26  DD 0D B9 9B 6A 15 2C 32
BSimpson(_at_)MorningStar(_dot_)com
    Key fingerprint =  2E 07 23 03 C5 62 70 D3  59 B1 4F 5E 1D C2 C1 A2

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Principles and Principals, (continued) Re: Principles and Principals, tzeruch Re: Principles and Principals, David P. Kemp RE: Principles and Principals, Rik Drummond Re: Principles and Principals, Ian Brown Re: Principles and Principals, Bonatti Chris RE: Principles and Principals, Rik Drummond RE: Principles and Principals, Hal Finney Re: Principles and Principals, Ian Brown Re: Principles and Principals, Ian Brown Re: Principles and Principals, William Allen Simpson Re: Principles and Principals, William Allen Simpson <= Re: Principles and Principals, William H. Geiger III Re: Principles and Principals, Pat Richard

Previous by Date:	Re: Principles and Principals, Jon Callas
Next by Date:	Working Group announcement, Charles Breed
Previous by Thread:	Re: Principles and Principals, William Allen Simpson
Next by Thread:	Re: Principles and Principals, William H. Geiger III
Indexes:	[Date] [Thread] [Top] [All Lists]