IETF Logo Mail Archive

[pkix] purpose of LDAP in PKI

"Andris Berzins" <pkix@inbox.lv> Mon, 18 February 2013 12:49 UTC

Return-Path: <pkix@inbox.lv>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2BF0021F887F for <pkix@ietfa.amsl.com>; Mon, 18 Feb 2013 04:49:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.315
X-Spam-Level:
X-Spam-Status: No, score=-1.315 tagged_above=-999 required=5 tests=[AWL=-1.685, BAYES_40=-0.185, HTML_MESSAGE=0.001, HTML_MIME_NO_HTML_TAG=0.097, MIME_HTML_ONLY=1.457, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2cdkPbt2mZKh for <pkix@ietfa.amsl.com>; Mon, 18 Feb 2013 04:49:53 -0800 (PST)
Received: from shark4.inbox.lv (shark4.inbox.lv [89.111.3.84]) by ietfa.amsl.com (Postfix) with ESMTP id 979A221F884F for <pkix@ietf.org>; Mon, 18 Feb 2013 04:49:52 -0800 (PST)
Received: by shark4.inbox.lv (Postfix, from userid 1000) id 2EE7F25FEC; Mon, 18 Feb 2013 14:49:48 +0200 (EET)
Received: from localhost (localhost [127.0.0.1]) by shark4-plain-b64d2.inbox.lv (Postfix) with ESMTP id F1EB725F82 for <pkix@ietf.org>; Mon, 18 Feb 2013 14:49:47 +0200 (EET)
Received: from localhost ([10.0.1.11]) by localhost (shark4.inbox.lv [10.0.1.80]) (spamfilter, port 27) with ESMTP id LQUbeaXta9Ci for <pkix@ietf.org>; Mon, 18 Feb 2013 14:49:47 +0200 (EET)
Received: from 193.40.12.10 ( [193.40.12.10]) by mail.inbox.lv with HTTP; Mon, 18 Feb 2013 14:49:47 +0200
MIME-Version: 1.0
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Compose: web=mail.inbox.lv, node=w1.inbox.lv, l=en, compose=HTML
X-REMOTE-ADDR: 193.40.12.10
X-HTTP-USER-AGENT: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.17 (KHTML, like Gecko) Ubuntu Chromium/24.0.1312.56 Chrome/24.0.1312.56 Safari/537.17
Message-ID: <1361191787.5122236bed12c@mail.inbox.lv>
Date: Mon, 18 Feb 2013 14:49:47 +0200
From: Andris Berzins <pkix@inbox.lv>
To: pkix@ietf.org
User-Agent: Inbox.lv Webmail
Subject: [pkix] purpose of LDAP in PKI
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pkix>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Feb 2013 12:49:55 -0000


 
 
Hello,

What could be the reason why end user certificates should be stored in LDAP by the CA and made publicly available?


(I might understand the reason for storing CRLs (LDAP as an alternative to HTTP).)

v2.23.0 | Report a Bug | By Email