All,
I agree with all of Paul's recommended changes. I have one minor comment:
Paul recommended the following text for the S/MIME v3 Msg Spec, sec 3.7:
In 3.7, remove the entire section and its subsections, and replace it with:
3.7 Registration Requests
A sending agent that signs messages MUST have a certificate for the
signature so that a receiving agent can verify the signature. There are
many ways of getting certificates, such as through an exchange with a
certificate authority, through a hardware token or diskette, and so on.
S/MIME v2 [SMIMEV2] specified a method for "registering" public keys
with certificate authorities using an application/pkcs10 body part. The
IETF's PKIX Working Group is preparing another method for requesting
certificates; however, that work was not finished at the time of this
draft. S/MIME v3 does not specify how to request a certificate, but
instead mandates that every sending agent already has a certificate.
Recommend that the following sentence should be re-worded:
Paul's sentence: "The IETF's PKIX Working Group is preparing another method
for requesting certificates; however, that work was not finished at the time
of this draft"
Proposed text: "The IETF's PKIX Working Group is preparing another method
for the: end-entity to request certificates; CA to respond to the request;
and exchange of other certificate management information. However, that
work was not finished at the time of this draft."
================================
John Pawling
jsp(_at_)jgvandyke(_dot_)com
J.G. Van Dyke & Associates, Inc.
================================