RE: I-D ACTION:draft-ietf-pkix-ipki3cmp-08.txt

[Carlisle Adams <carlisle.adams@entrust.com>]

Hi all,

For those that are curious, the PKIX-CMP draft has been updated to
accommodate a change that was necessary for its companion draft CRMF.  The
request message in CRMF was missing a way to carry an AlgId in one of the
choices for proof-of-possession syntax (the syntax was borrowed from CMP,
which didn't need to carry the AlgId because it explicitly used the one
specified in PKIHeader, but since CRMF does not necessarily have a PKIHeader
the extra AlgId needed to be included).

The syntax change is on p.26, where publicKeyMAC is now a PKMACValue
(instead of a BIT STRING), and PKMACValue (defined in CRMF) is a sequence of
AlgId and BIT STRING.


--------------------------------------------
Carlisle Adams
Entrust Technologies
cadams@entrust.com
--------------------------------------------



> ----------
> From: 	Internet-Drafts@ietf.org[SMTP:Internet-Drafts@ietf.org]
> Sent: 	Tuesday, May 26, 1998 10:16 AM
> To: 	IETF-Announce
> Cc: 	ietf-pkix@imc.org
> Subject: 	I-D ACTION:draft-ietf-pkix-ipki3cmp-08.txt
> 
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> This draft is a work item of the Public-Key Infrastructure (X.509) Working
> Group 
> of the IETF.
> 
> 	Title		: Internet X.509 Public Key Infrastructure
> Certificate 
>                           Management Protocols
> 	Author(s)	: C. Adams, S. Farrell
> 	Filename	: draft-ietf-pkix-ipki3cmp-08.txt
> 	Pages		: 67
> 	Date		: 22-May-98
> 	
> This document describes the Internet X.509 Public Key Infrastructure
> (PKI) Certificate Management Protocols. Protocol messages are defined
> for all relevant aspects of certificate creation and management.  Note
> that 'certificate' in this document refers to an X.509v3 Certificate as
> defined in [COR95, X509-AM].
>