Jim:
I have embedded comments in the attached copy of CERTDIST.
After reading and commenting, I wonder if a general signed directory
attribute mechanism would be preferable. Such a mechanis would allow any
attribute to be signed by the user for posting in his directory entry. I
am not sure how searches would work in the directory with such an attribute.
The directory entry could contain many attributes:
sMIMEcapabilities
emailAddress
userCertificate
whateverElse
signedAttributes
SIGNED ( sMIMEcapabilities )
SIGNED ( whateverElse )
Does this generalization make sence?
Russ
certdist-cmts.txt
Description: Text document