ietf-smime
[Top] [All Lists]

RE: CAdES implementation. Complete Revocation References attribut e.

2008-03-13 04:49:41

To clarify my point 3 - The text currently requires a one-to-one
relationship between the between the revocation information and the
certificate.  There has been a suggestion that this is relaxed so that there
is just a list of revocation information un related to particular
certificates.

I have some concern of this change as it could lead to ambiguity over which
revocation information (if any) was used to check which certificate.  Even
though this might be repetitious I suggest that we should keep this as it
is.

Nick



-----Original Message-----
From: esi : etsi tc esi (electronic signatures and infrastructures)
[mailto:ESI(_at_)LIST(_dot_)ETSI(_dot_)ORG] On Behalf Of Giessmann, Ernstg
Sent: 13 March 2008 09:25
To: ESI(_at_)LIST(_dot_)ETSI(_dot_)ORG
Subject: Re: CAdES implementation. Complete Revocation References attribut
e.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Dear all,
Nick's proposals 1) and 2) are good.

I can't imagine what a 1-to-1 relationship in 3) means.
Certainly revocation information is in relationship to certificates and
vice versa. Or is it required that for each certificiate one and only
one revocation information appears?
Please clarify to get a positive response on 3)

Regards,
Ernst.

....snip....
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)

iQEVAwUBR9jwGL6TjTZyMv2oAQgsngf/WMCJyhgmpD/xeg29R5Omob5deDIdyn4F
FPAtmrDbWor2Or3UEnSpPO5N59gfZAHDl7T+sC2yTqcw0iQXnynKi3j1TcrAP7hH
YV9l3VhWEtx7OotK/4dEwULz+YFueQKS8ZnBdKqqn5ElHHqzGprY2GTE6YwOOCjI
cxLbMvqnNd5txuaBiiJKe1BztEWBmLUBFwBBfU9MnSP6esF+jqSc4zTb1WCSFgyK
IQMmWHdl/Yl5gLxCcW+734035vx67PziB/Lk07osYW+w4L18b6w1TP8e+mLKZxQS
quEl40LFgjvbsEU9IKvKXpkzt1kEepO52pH3Y3BsLmDQoHETmbX66A==
=e8pl
-----END PGP SIGNATURE-----

-------------------------------------------------------------------
Mail archive for ESI can be browsed at the following url:
         http://list.etsi.org/ESI.html
-------------------------------------------------------------------
Consider the environment before printing this mail.
"Thales e-Security Limited is incorporated in England and Wales with company
registration number 2518805. Its registered office is located at 2 Dashwood
Lang Road, The Bourne Business Park, Addlestone, Nr. Weybridge, Surrey KT15
2NX.
The information contained in this e-mail is confidential. It may also be
privileged. It is only intended for the stated addressee(s) and access to it
by any other person is unauthorised. If you are not an addressee or the
intended addressee, you must not disclose, copy, circulate or in any other
way use or rely on the information contained in this e-mail. Such
unauthorised use may be unlawful. If you have received this e-mail in error
please delete it (and all copies) from your system, please also inform us
immediately on +44 (0)1844 201800 or email 
postmaster(_at_)thales-esecurity(_dot_)com(_dot_)
Commercial matters detailed or referred to in this e-mail are subject to a
written contract signed for and on behalf of Thales e-Security Limited".