|
RE: Key usage. No, wait, *extended* key usage
1998-02-06 12:05:57
Blake,
PKIX I already documents the fact that D-H certs will include the keyUsage
extension with the keyAgreement bit set to 1 and that RSA certs will include
keyUsage with keyEncipherment set to 1, so the S/MIME certs spec doesn't
need to say anything about this topic.
In general, I believe that the S/MIME Certs spec should only include
S/MIME-specific requirements and that it should not repeat what is already
stated in X.509 and PKIX I.
- John Pawling
At 05:49 PM 2/5/98 -0800, Blake Ramsdell wrote:
On Thursday, February 05, 1998 1:40 PM, jsp(_at_)jgvandyke(_dot_)com
[SMTP:jsp(_at_)jgvandyke(_dot_)com] wrote:
Also, please note that the keyAgreement bit will be set to 1 if D-H or
KEA
is being used.
You are using keyAgreement to indicate a certificate that is used to
protect a symmetric key?
We will likely need to document this in the cert draft.
Blake
--
Blake C. Ramsdell
Worldtalk Corporation
For current info, check http://www.deming.com/users/blaker
Voice +1 425 882 8861 x103 Fax +1 425 882 8060
| <Prev in Thread] |
Current Thread |
[Next in Thread>
|
- Re: Key usage. No, wait, *extended* key usage, (continued)
- Re: Key usage. No, wait, *extended* key usage, John Pawling
- Re: Key usage. No, wait, *extended* key usage, David P. Kemp
- Re: Key usage. No, wait, *extended* key usage, John Pawling
- RE: Key usage. No, wait, *extended* key usage, Blake Ramsdell
- RE: Key usage. No, wait, *extended* key usage, John Pawling
- RE: Key usage. No, wait, *extended* key usage, Blake Ramsdell
- RE: Key usage. No, wait, *extended* key usage, Blake Ramsdell
- Re: Key usage. No, wait, *extended* key usage, David P. Kemp
- RE: Key usage. No, wait, *extended* key usage,
John Pawling <=
- RE: Key usage. No, wait, *extended* key usage, Jim Schaad (Exchange)
- RE: Key usage. No, wait, *extended* key usage, John Pawling
- RE: Key usage. No, wait, *extended* key usage, Trevor Freeman
|
|
|