-----Original Message-----
From: owner-ietf-smime(_at_)mail(_dot_)imc(_dot_)org
[mailto:owner-ietf-smime(_at_)mail(_dot_)imc(_dot_)org] On Behalf Of Steve
Hole
Sent: Friday, August 15, 2003 9:50 AM
To: Simon Josefsson
Cc: ietf-smime(_at_)imc(_dot_)org
Subject: Re: PKI and S/MIME
On Fri, 15 Aug 2003 01:41:22 +0200 Simon Josefsson
<jas(_at_)extundo(_dot_)com> wrote:
But this isn't an important point, and I don't see anything that can
be seen as a _disadvantage_ for DNS compared to LDAP or XKMS here.
Perhaps this tangental issue only distract us from the big picture.
Agreed. I think that the provision of a simple-to-use API
would be a
huge help here.
I thought I published this at one point, though it might have been
internal only. I'll use a somewhat Java-ish syntax here.
EncryptingInformation
findInformationRequiredForEncryptingForEmailAddress(
String emailAddress
);
boolean
isCertificateSuitableForSigningEmail(
String emailAddress,
X509Certificate signingCertificate,
X509CertificateList otherCertificates,
CRLList cRLs
);
EncryptingInformation contains:
1. Any cached SMIMECapabilities
2. An X.509 certificate for encrypting
OK, now we just fill in the details ;).
Blake