IETF Logo Mail Archive

Re: [IPsec] #120: CA indication with cert req - allowed types

David Wierbowski <wierbows@us.ibm.com> Fri, 30 October 2009 22:34 UTC

Return-Path: <wierbows@us.ibm.com>
X-Original-To: ipsec@core3.amsl.com
Delivered-To: ipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 73B273A688C for <ipsec@core3.amsl.com>; Fri, 30 Oct 2009 15:34:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.583
X-Spam-Level:
X-Spam-Status: No, score=-5.583 tagged_above=-999 required=5 tests=[AWL=1.015, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 08Jv55cLw-+N for <ipsec@core3.amsl.com>; Fri, 30 Oct 2009 15:34:07 -0700 (PDT)
Received: from e8.ny.us.ibm.com (e8.ny.us.ibm.com [32.97.182.138]) by core3.amsl.com (Postfix) with ESMTP id 9FE7C3A6800 for <ipsec@ietf.org>; Fri, 30 Oct 2009 15:34:07 -0700 (PDT)
Received: from d01relay01.pok.ibm.com (d01relay01.pok.ibm.com [9.56.227.233]) by e8.ny.us.ibm.com (8.14.3/8.13.1) with ESMTP id n9UIRGpc014462 for <ipsec@ietf.org>; Fri, 30 Oct 2009 14:27:16 -0400
Received: from d01av04.pok.ibm.com (d01av04.pok.ibm.com [9.56.224.64]) by d01relay01.pok.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id n9UMUih0099714 for <ipsec@ietf.org>; Fri, 30 Oct 2009 18:30:44 -0400
Received: from d01av04.pok.ibm.com (loopback [127.0.0.1]) by d01av04.pok.ibm.com (8.14.3/8.13.1/NCO v10.0 AVout) with ESMTP id n9UMUiul032324 for <ipsec@ietf.org>; Fri, 30 Oct 2009 18:30:44 -0400
Received: from d01ml084.pok.ibm.com (d01ml084.pok.ibm.com [9.63.10.23]) by d01av04.pok.ibm.com (8.14.3/8.13.1/NCO v10.0 AVin) with ESMTP id n9UMUibW032316 for <ipsec@ietf.org>; Fri, 30 Oct 2009 18:30:44 -0400
In-Reply-To: <19178.63776.974040.367597@fireball.kivinen.iki.fi>
References: <7F9A6D26EB51614FBF9F81C0DA4CFEC801BDA1213EAC@il-ex01.ad.checkpoint.com> <19178.63776.974040.367597@fireball.kivinen.iki.fi>
X-KeepSent: C3B20FF4:BF2F748A-8525765F:007B7318; type=4; name=$KeepSent
To: IPsecme WG <ipsec@ietf.org>
X-Mailer: Lotus Notes Release 8.0.2FP1 SHF149 July 17, 2009
Message-ID: <OFC3B20FF4.BF2F748A-ON8525765F.007B7318-8525765F.007BA8F3@us.ibm.com>
From: David Wierbowski <wierbows@us.ibm.com>
Date: Fri, 30 Oct 2009 18:30:42 -0400
X-MIMETrack: Serialize by Router on D01ML084/01/M/IBM(Release 8.0.2FP1|November 13, 2008) at 10/30/2009 18:30:44
MIME-Version: 1.0
Content-type: multipart/alternative; Boundary="0__=0ABBFCCCDFE8F5888f9e8a93df938690918c0ABBFCCCDFE8F588"
Content-Disposition: inline
Subject: Re: [IPsec] #120: CA indication with cert req - allowed types
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipsec>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Oct 2009 22:34:08 -0000

> So the text most likely should say that "For other values the
> certificate authority field contents is not defined, and can be
> anything (or empty) until specifications that specify their contents
> is published."
I do not think they can be anything.  I think they need to be empty until
specifications that specify their contents are published.

Dave Wierbowski


z/OS Comm Server Developer

 Phone:
    Tie line:   620-4055
    External:  607-429-4055

v2.23.0 | Report a Bug | By Email