a note about PKINIT and PKCROSS

To: cat-ietf at mit.edu
Subject: a note about PKINIT and PKCROSS
From: Brian Tung <brian at isi.edu>
Date: Fri, 27 Mar 1998 13:20:12 -0800 (PST)
Delivery-date: Fri, 27 Mar 1998 17:35:23 -0500

In a pair of forthcoming notes, I will post PKINIT and PKCROSS.  Here
are some short notes concerning these drafts (neither of which have
changed much).

PKINIT: The principal technical change has been the modification of
the Signature data structure to align itself more closely with PKCS-1.
There is a new Security Considerations section, at the behest of
Denis.  There are some other minor textual changes.

PKCROSS: There are no technical changes.  A comment about KDC-to-KDC
communications has been added.  The authors feel that there is a
trade-off between having the KDC-to-KDC exchange and thereby buying
a guarantee, so to speak, that the remote KDC will accept the ticket,
and not having that exchange and possibly having tickets rejected
after being issued.  We choose the former so that the operation from
the client's perspective is unchanged.

b

Prev by Date: Re: Internet Open Trading Protocol BoF
Next by Date: Re: Internet Open Trading Protocol BoF
Previous by thread: Internet Open Trading Protocol BoF
Next by thread: PKCROSS as it appeared on I-D servers
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.

a note about PKINIT and PKCROSS

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.