RE: Corporate Key mechanism

ALL:

I would like to bring this thread to a close.

In my view, S/MIME 3 already support three key/message recovery schemes.
First, the CA can keep a copy of any key management private key (e.g.,
Entrust).  Second, the originator can include a a recovery agent in the CC
list for every message.  Third, a session key recovery scheme can be used
with the necessary fields carried as algorithm parameters (e.g., TIS).
None of these approaches requires a change to the protocol specification.
And, I am strongly opposed to requiring the use of any particular scheme.

Please, on resolution of the open issues.

Thanks,
  Russ Housley
  S/MIME WG Chair

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Corporate Key mechanism, (continued) RE: Corporate Key mechanism, Larry Layten RE: Corporate Key mechanism, John Pawling RE: Corporate Key mechanism, Blake Ramsdell RE: Corporate Key mechanism, Jim Schaad (Exchange) RE: Corporate Key mechanism, Chen Wang Re: Corporate Key mechanism, Peter Gutmann RE: Corporate Key mechanism, Blake Ramsdell RE: Corporate Key mechanism, John Pawling Re: Corporate Key mechanism, John Pawling RE: Corporate Key mechanism, John Pawling RE: Corporate Key mechanism, Russ Housley <= RE: Corporate Key mechanism, Bruce Greenblatt RE: Corporate Key mechanism, Blake Ramsdell

Previous by Date:	RE: Corporate Key mechanism, Blake Ramsdell
Next by Date:	Re: Tolerance on Message Digest Attribute, Russ Housley
Previous by Thread:	RE: Corporate Key mechanism, John Pawling
Next by Thread:	RE: Corporate Key mechanism, Bruce Greenblatt
Indexes:	[Date] [Thread] [Top] [All Lists]