Re: Revised "RFC [FORMS]" draft

pem-dev

Re: Revised "RFC [FORMS]" draft

1992-04-10 10:44:00

        2. Protection against an attack where a user requests a certificate
           with someone else's public key. The user signs the (name, public
           key) combination, proving that the user has the private key and is
           not replaying someone else's signature.

At the risk of missing something obvious in an open forum, I do not
understand this.

A user wants a certificate signed.  The user constructs a request
message and "signs" this message with the private key corresponding to
the public key in the request message.  Whether that public key is in a
"cert-request" field or in a prototype certificate in a "certificate"
field, the threats are the same.

What am I missing?

Jim

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Revised "RFC [FORMS]" draft, Burt Kaliski Re: Revised "RFC [FORMS]" draft, David M. Balenson Re: Revised "RFC [FORMS]" draft, Charles W. Gardiner Revised "RFC [FORMS]" draft, Burt Kaliski Re: Revised "RFC [FORMS]" draft, Steve Kent Revised "RFC [FORMS]" draft, Jeff Thompson Re: Revised "RFC [FORMS]" draft, Steve Kent Revised "RFC [FORMS]" draft, Burt Kaliski Re: Revised "RFC [FORMS]" draft, Steve Kent Revised "RFC [FORMS]" draft, Jeffrey I. Schiller Re: Revised "RFC [FORMS]" draft, James M Galvin <= Revised "RFC [FORMS]" draft, Burt Kaliski Re: Revised "RFC [FORMS]" draft, Charles W. Gardiner Revised "RFC [FORMS]" draft, Burt Kaliski

Previous by Date:	(Minor) update to son-of-1113 Internet-Draft, John Linn 10-Apr-1992 1330
Next by Date:	Revised "RFC [FORMS]" draft, Jeff Thompson
Previous by Thread:	Revised "RFC [FORMS]" draft, Jeffrey I. Schiller
Next by Thread:	Revised "RFC [FORMS]" draft, Burt Kaliski
Indexes:	[Date] [Thread] [Top] [All Lists]