On Friday, November 07, 1997 3:36 PM, Jim Schaad (Exchange)
[SMTP:jimsch(_at_)EXCHANGE(_dot_)MICROSOFT(_dot_)com] wrote:
I don't know that there should be a MUST implement for this. Not every
S/MIME product will have the generation of keys inside of the product
nor should it be required. In the case of Microsoft Outlook Express, we
don't do any key enrollment in the product itself, that is done by an
external program (Microsoft Internet Explorer) and we just pick up its
output later. It would make sense for there to be a MUST on the CA
side, but not on the client side.
Ah. So maybe this should be worded "IF you implement keypair generation
AND you are submitting the public key to a CA THEN you MUST use..."
Does this sound right?
Blake
--
Blake C. Ramsdell
Worldtalk Corporation
For current info, check http://www.deming.com/users/blaker
Voice +1 425 882 8861 x103 Fax +1 425 882 8060