pem-dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: DN/EN pairs

1994-02-07 08:41:00
from [John Lowry] [Permanent Link] 
Steve Crocker writes ...


Proposed: Certificates be modified to provide two forms of
identification, the distinguished name (DN) as its presently defined,
*and* an email name (EN) directly usable as the network address
associated with the same entity.



Synopsis of argument: Both are needed.  Attempts to make one or the
other the primary form lead to potential security flaws.




Steve


Why is my email address associated with my keying material ?

Both are not needed.  You don't need my IP address "bound" to my
RFC-822 domain name address !  (Try jlowry(_at_)bbn(_dot_)com (128.89.4.237))

I also don't see the potential security flaw.  Please support this
statement.

John Lowry
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  I hate mondays.., p . churchyard
Next by Date:  DGSA NOW ON-LINE AT DTIC, DOCKMASTER, NIST, Robert W. Shirey
Previous by Thread:  Re: DN/EN pairs, Donald E. Eastlake 3rd (Beast)
Next by Thread:  Re: PEM-DEV message to you, resent, Marshall Rose
Indexes:  [Date] [Thread] [Top] [All Lists]