RE: TR: Request change in son-of-rfc2633
"Tony Capel" <capel@comgate.com> Wed, 29 October 2003 16:05 UTC
Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA15883 for <smime-archive@lists.ietf.org>; Wed, 29 Oct 2003 11:05:03 -0500 (EST)
Received: from above.proper.com (localhost [127.0.0.1]) by above.proper.com (8.12.10/8.12.8) with ESMTP id h9TFZ2kT024796 for <ietf-smime-bks@above.proper.com>; Wed, 29 Oct 2003 07:35:02 -0800 (PST) (envelope-from owner-ietf-smime@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.10/8.12.9/Submit) id h9TFZ2XN024795 for ietf-smime-bks; Wed, 29 Oct 2003 07:35:02 -0800 (PST)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-smime@mail.imc.org using -f
Received: from mx2.magma.ca (mx2.magma.ca [206.191.0.250]) by above.proper.com (8.12.10/8.12.8) with ESMTP id h9TFZ1kT024790 for <ietf-smime@imc.org>; Wed, 29 Oct 2003 07:35:01 -0800 (PST) (envelope-from capel@comgate.com)
Received: from mail2.magma.ca (mail2.magma.ca [206.191.0.214]) by mx2.magma.ca Magma's Mail Server with ESMTP id h9TFYllg004482; Wed, 29 Oct 2003 10:34:47 -0500
Received: from tony (ottawa-hs-209-217-122-183.s-ip.magma.ca [209.217.122.183]) by mail2.magma.ca (8.12.10/8.12.9) with ESMTP id h9TFYcCt002052; Wed, 29 Oct 2003 10:34:47 -0500
From: Tony Capel <capel@comgate.com>
To: 'Peter Gutmann' <pgut001@cs.aucKland.ac.nz>, aalberti@axway.com, ietf-smime@imc.org
Subject: RE: TR: Request change in son-of-rfc2633
Date: Wed, 29 Oct 2003 10:34:37 -0500
Message-ID: <000c01c39e32$2ca9ba20$01b5a8c0@tony>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook, Build 10.0.4510
In-Reply-To: <200310290933.h9T9Xbg11033@cs.auckland.ac.nz>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
Importance: Normal
Sender: owner-ietf-smime@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-ID: <ietf-smime.imc.org>
List-Unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Content-Transfer-Encoding: 7bit
> "Alberti Antoine" <aalberti@axway.com> writes: > > Actually, I even wonder what guarantees that a iAndS is unique, ... "Peter Gutmann" writes: | | Well, firstly, X.500 theology requires that you believe that | all (CA) DNs are unique, and to even claim otherwise is | treason punishable by limb reconstruction. In any case even | if you do run into a situation where two CAs choose to use | the same DN, the chance of the serial numbers (a 128-bit or | 160- bit random hash value in most cases) matching as well | are... slim. | And also hopefully we are all practicing safe root certificate use. We are only installing trust roots for domains that conform to our security policy - this including appropriate obeisance to X.500 theology on the assignment of DN's (and the issue of cross certs). Of course with root certs being downloaded as part of operating system updates, many of us may be relying on the os vendor to do that ..... Tony
- TR: Request change in son-of-rfc2633 Alberti Antoine
- Re: TR: Request change in son-of-rfc2633 Peter Gutmann
- RE: TR: Request change in son-of-rfc2633 Tony Capel