On 15/04/2015 22:01 pm, Jon Callas wrote:
My comments inline:
h) clean up the language: clearly distinguish between "public key" and
"certificate", and ensure that the use of the terms "trust" and
"validity", if still present, are used unambiguously.
This would be good, but it touches upon a political third rail here. That
problem really needs to be cleaned up.
When 2440 started, there was an agreement with the Security Area that OpenPGP would not
be a "PKI" (whatever the heck that means), because there was already a PKI,
namely PKIX.
:-o
I don't suppose it would have made much difference to us in OpenPGP, but
it's nice to know how deep the rot ran at IETF.
iang
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp