RE: Request change in son-of-rfc2633

ietf-smime

RE: Request change in son-of-rfc2633

2003-10-28 21:23:20


Peter:

>Further, if there is a collision, an implementation can try the very small
>number of public keys that have the same identifier.

How does it know when to stop looking for more certs?  For example, what if it
can only find one cert and it's the wrong one?

If the key identifier is computed from the public key as recommended by RFC3280, the odds are quite small. So, if the first certificate located isnot the right one, search for another. If one is not located, then returnan error.


Russ

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
RE: Request change in son-of-rfc2633, (continued) RE: Request change in son-of-rfc2633, Russ Housley RE: Request change in son-of-rfc2633, Blake Ramsdell Message not available RE: Request change in son-of-rfc2633, Russ Housley RE: Request change in son-of-rfc2633, Peter Gutmann RE: Request change in son-of-rfc2633, Blake Ramsdell RE: Request change in son-of-rfc2633, Peter Gutmann RE: Request change in son-of-rfc2633, Peter Gutmann Re: Request change in son-of-rfc2633, Steve Hanna RE: Request change in son-of-rfc2633, Santosh Chokhani RE: Request change in son-of-rfc2633, Peter Gutmann RE: Request change in son-of-rfc2633, Russ Housley <= RE: Request change in son-of-rfc2633, Peter Gutmann Re: Request change in son-of-rfc2633, Peter Gutmann

Previous by Date:	RE: Request change in son-of-rfc2633, Peter Gutmann
Next by Date:	RE: Request change in son-of-rfc2633, Peter Gutmann
Previous by Thread:	RE: Request change in son-of-rfc2633, Peter Gutmann
Next by Thread:	RE: Request change in son-of-rfc2633, Peter Gutmann
Indexes:	[Date] [Thread] [Top] [All Lists]