RE: Centralized Scheme versus Basic Authentication Scheme
Carlisle Adams <carlisle.adams@entrust.com> Thu, 15 October 1998 00:12 UTC
Received: from mail.proper.com (mail.proper.com [206.86.127.224]) by ietf.org (8.8.5/8.8.7a) with ESMTP id UAA24994 for <pkix-archive@odin.ietf.org>; Wed, 14 Oct 1998 20:12:59 -0400 (EDT)
Received: (from majordomo@localhost) by mail.proper.com (8.8.8/8.8.5) id OAA22676 for ietf-pkix-bks; Wed, 14 Oct 1998 14:43:47 -0700 (PDT)
Received: from gatekeeper.entrust.com (gatekeeper.entrust.com [204.101.128.170]) by mail.proper.com (8.8.8/8.8.5) with SMTP id OAA22672 for <ietf-pkix@imc.org>; Wed, 14 Oct 1998 14:43:45 -0700 (PDT)
Received: id RAA21675; Wed, 14 Oct 1998 17:42:39 -0400
Received: by gateway id <4CGY0N97>; Wed, 14 Oct 1998 17:40:25 -0400
Message-ID: <D789F71F24B4D111955D00A0C99B4F5001789100@sothmxs01.entrust.com>
From: Carlisle Adams <carlisle.adams@entrust.com>
To: ietf-pkix@imc.org, "'Stefan_Salzmann/HAM/Lotus@lotus.com'" <Stefan_Salzmann/HAM/Lotus@lotus.com>
Subject: RE: Centralized Scheme versus Basic Authentication Scheme
Date: Wed, 14 Oct 1998 17:38:46 -0400
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.1960.3)
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by mail.proper.com id OAA22673
Sender: owner-ietf-pkix@imc.org
Precedence: bulk
Hi Stefan, > ---------- > From: > Stefan_Salzmann/HAM/Lotus@lotus.com[SMTP:Stefan_Salzmann/HAM/Lotus@lot > us.com] > Sent: Tuesday, October 13, 1998 9:39 AM > To: ietf-pkix@imc.org > Subject: Centralized Scheme versus Basic Authentication Scheme > > Hello once again, > > wouldn´t it be better as well as easier to use the centralized scheme > instead > using the basic authentication scheme: > It may well be easier, but "better" depends upon your environment... > In Draft draft-ietf-pkix-ipki3cmp-08.txt Certificate Management > Protocols the > basic authentication scheme MUST be used. So why not using the easier > centralized scheme. > > Thanks for answering, > Stefan > Many people object to the idea that the CA generates all key pairs (for a variety of reasons, including the absence of strong non-repudiation arguments). Therefore, making the centralized scheme the mandatory scheme was totally unacceptable to a large number of interested parties. -------------------------------------------- Carlisle Adams Entrust Technologies cadams@entrust.com --------------------------------------------
- Centralized Scheme versus Basic Authentication Sc… Stefan_Salzmann/HAM/Lotus
- RE: Centralized Scheme versus Basic Authenticatio… Carlisle Adams