Werner Koch <wk(_at_)gnupg(_dot_)org> writes:
On 17 Jan 2002 12:44:30 -0500, Derek Atkins said:
Keep in mind that TLS can use "user certificates" too... Are you
implying that users with v3 certs have to generate a new key
in order to use them in TLS?
Yes, for the same reasons as for servers. The majority of keys is v4
I disagree that these reasons are valid... But that's not important
right now..
And I still don't see a reason why a keyID is needed in TLS. We need
the keyIDs to lookup signing keys but this has nothing to do with TLS.
Ok, perhaps I am confused. Could you please explain how the
fingerprint would get used the TLS protocol? I thought it was being
used to present an "I can use this key" message to the other side,
which implies (to me) that the remote end would need to lookup a key
based on that number. Could you please explain how this "identifier"
is meant to be used within TLS?
-derek
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH
warlord(_at_)MIT(_dot_)EDU PGP key available