IETF Logo Mail Archive

Re: OCSP - Adoption of response models

David.Tillemans@utimaco.be Fri, 04 April 2003 12:13 UTC

Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA18352 for <pkix-archive@lists.ietf.org>; Fri, 4 Apr 2003 07:13:06 -0500 (EST)
Received: from above.proper.com (localhost [127.0.0.1]) by above.proper.com (8.12.9/8.11.6) with ESMTP id h34AwMJM016608 for <ietf-pkix-bks@above.proper.com>; Fri, 4 Apr 2003 02:58:22 -0800 (PST)
Received: (from majordomo@localhost) by above.proper.com (8.12.9/8.12.9/Submit) id h34AwLau016607 for ietf-pkix-bks; Fri, 4 Apr 2003 02:58:21 -0800 (PST)
X-Authentication-Warning: above.proper.com: majordomo set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from utimaco.be (mail.utimaco.be [193.121.107.230]) by above.proper.com (8.12.9/8.11.6) with ESMTP id h34AwJJM016599 for <ietf-pkix@imc.org>; Fri, 4 Apr 2003 02:58:20 -0800 (PST)
Received: (from smtp@localhost) by utimaco.be (8.11.1/8.11.1) id h34AxYd07297; Fri, 4 Apr 2003 10:59:34 GMT (envelope-from David.Tillemans@utimaco.be)
X-Authentication-Warning: Internet-Router.utimaco.be: smtp set sender to <David.Tillemans@utimaco.be> using -f
Received: from belgien1(10.7.0.25), claiming to be "belgien1.utimaco.be" via SMTP by Internet-Router, id smtpdXv7294; Fri Apr 4 10:59:27 2003
Subject: Re: OCSP - Adoption of response models
To: chris.gilbert@royalmail.com
Cc: ietf-pkix@imc.org
X-Mailer: Lotus Notes Release 5.0.7 March 21, 2001
Message-ID: <OF1FA44616.39B14F31-ONC1256CFE.003B7196@utimaco.be>
From: David.Tillemans@utimaco.be
Date: Fri, 04 Apr 2003 12:51:01 +0200
X-MIMETrack: Serialize by Router on Belgien1/Utimaco/BE(Release 5.0.7 |March 21, 2001) at 04/04/2003 12:51:03 PM
MIME-Version: 1.0
Content-type: text/plain; charset="us-ascii"
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>


Hi Chris,

     I should also think that it is the response model II). But who
thrust/signs the certificate of the VA.

Friendly greetings,
Utimaco Safeware - Digital Transaction Security

David Tillemans
Project Leader

Tel.     +32 (0)16 440135
Fax.     +32 (0)16 440140
mailto:David.Tillemans@utimaco.be
Internet   http://www.utimaco.be
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

This email is confidential and intended solely for the use of the
individual to whom it is addressed. If you are not the intended recipient,
be advised that you have received this email in error and that any use,
dissemination, forwarding, printing or copying of this email is strictly
prohibited. If you have received this email in error please notify the
sender by telephone on +3216440135
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------




                                                                                                                       
                    chris.gilbert@roya                                                                                 
                    lmail.com                To:     ietf-pkix@imc.org                                                 
                    Sent by:                 cc:                                                                       
                    owner-ietf-pkix@ma       Subject:     OCSP - Adoption of response models                           
                    il.imc.org                                                                                         
                                                                                                                       
                                                                                                                       
                    04/04/2003 11:46                                                                                   
                                                                                                                       
                                                                                                                       







RFC2560 offers three valid response models for OCSP (Two too many
in my opinion)

i.   Signed by the CA
ii.  Signed by a VA with explicit delegation by the CA
iii. A local model

Does anyone have a feel for which model boasts the most widespread
adoption ? I feel it should be ii) but suspect its iii) Deployment of the
technology appears to be too scarce at present to make a sensible
judgement.

Opinions appreciated

Chris


This  email  and  any  attachments  are confidential and intended for the
addressee
only.   If  you are not the named recipient, you must not use, disclose,
reproduce,
copy  or  distribute the contents of this communication.  If you have
received this
in error, please contact the sender and then delete this email from your
system.

v2.23.0 | Report a Bug | By Email