ietf-smime
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [smime] [pkix] [Fwd: I-D ACTION:draft-turner-md2-to-historic-00.txt]

2010-06-10 21:50:39
from [Peter Gutmann] [Permanent Link] 
Dr Stephen Henson <lists(_at_)drh-consultancy(_dot_)demon(_dot_)co(_dot_)uk> 
writes:


The self signed root CA issue was worked around by disabling the signature
check on the root CA by default, since it is redundant.


What about catching accidental data corruption?  It still acts as an integrity
check, even if it's not an authenticity check.

(I recently ran into a situation where mangled PEM-encoding had corrupted
portions of CA root certs, and in some cases only the sig check would have
caught it).

Peter.
_______________________________________________
smime mailing list
smime(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/smime
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [smime] [saag] [Fwd: I-D ACTION:draft-turner-md2-to-historic-00.txt], Santosh Chokhani
Next by Date:  Re: [smime] [Cfrg] [Fwd: I-D ACTION:draft-turner-md2-to-historic-00.txt], Peter Gutmann
Previous by Thread:  Re: [smime] [Fwd: I-D ACTION:draft-turner-md2-to-historic-00.txt], Dr Stephen Henson
Next by Thread:  Re: [smime] [saag] [Fwd: I-D ACTION:draft-turner-md2-to-historic-00.txt], SM
Indexes:  [Date] [Thread] [Top] [All Lists]