Re: [therightkey] [pkix] Proposal for working on PKIX revocation open issues
Phillip Hallam-Baker <phill@hallambaker.com> Mon, 17 November 2014 21:08 UTC
Return-Path: <hallam@gmail.com>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 77C471AC3F3 for <therightkey@ietfa.amsl.com>; Mon, 17 Nov 2014 13:08:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.278
X-Spam-Level:
X-Spam-Status: No, score=-1.278 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N7bbVsJ1_8jz for <therightkey@ietfa.amsl.com>; Mon, 17 Nov 2014 13:08:12 -0800 (PST)
Received: from mail-lb0-x22b.google.com (mail-lb0-x22b.google.com [IPv6:2a00:1450:4010:c04::22b]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 869561AC3E1 for <therightkey@ietf.org>; Mon, 17 Nov 2014 13:08:12 -0800 (PST)
Received: by mail-lb0-f171.google.com with SMTP id b6so16710149lbj.16 for <therightkey@ietf.org>; Mon, 17 Nov 2014 13:08:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=W4UtL6X+b6+6wOEpcSb7Qygxx24bU6xNUFMe3Iu/Rbs=; b=tIZCV3EB+R8iFmZv3Pd+ieI2ipYQ+UCov8vKBPAdl/ue/N9Ecs3613VgJVdMSJdgLY ePzo4uPhISLXJ/2iFpv9xwPm22hNPJKu74vPU+PgrTgrPHS5EPqrKZ/89JF1YO0Da3MK i62U3O1Jp5EQs4aMqUA31LTfCrsM54+wkG8k/6Sb9SW0Z3jfCxRZnG0qnKSlHnG4bmY+ T5Tf8Q9zb6Z6JRMq/dkVsb8hm2vlYPMcjuEe/h0vZcsUMak4tYdOh22FQfoUG4oiWW7Z 1lJYkxWMMK4/lNskiw2XkCiBOgufOp9Per7TqQyj+o0w/TdSe5ixAJAcfHsCCSqqWQGp vS6g==
MIME-Version: 1.0
X-Received: by 10.152.87.67 with SMTP id v3mr6477736laz.97.1416258490722; Mon, 17 Nov 2014 13:08:10 -0800 (PST)
Sender: hallam@gmail.com
Received: by 10.112.34.212 with HTTP; Mon, 17 Nov 2014 13:08:10 -0800 (PST)
In-Reply-To: <CAHOTMV+_ASePLyPrvKMW_C8NiNxShY8PQQfZepmuaNQXChoXYw@mail.gmail.com>
References: <5466AF87.2050307@gmail.com> <CAMm+Lwg30tb+yFxVMG3qJ=_fjVT=ASqUmaf9gH8wpUhUGxgf6A@mail.gmail.com> <CAK3OfOionKNtMRv+bFqY=yN1x+VQNwzraOBF-NSsdnSu6dOA5w@mail.gmail.com> <CAHOTMV+_ASePLyPrvKMW_C8NiNxShY8PQQfZepmuaNQXChoXYw@mail.gmail.com>
Date: Mon, 17 Nov 2014 16:08:10 -0500
X-Google-Sender-Auth: OxFb0_s05D3v9Et1UUrJ0JYgCQU
Message-ID: <CAMm+LwjykpZ5EswC4TUgpgJ+L3Ai=0APx5RzKwTpb6wgwBfVdQ@mail.gmail.com>
From: Phillip Hallam-Baker <phill@hallambaker.com>
To: Tony Arcieri <bascule@gmail.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/therightkey/4G6fllJttVB3MB8KxMP2-RwySYw
Cc: Nico Williams <nico@cryptonector.com>, "therightkey@ietf.org" <therightkey@ietf.org>
Subject: Re: [therightkey] [pkix] Proposal for working on PKIX revocation open issues
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Nov 2014 21:08:17 -0000
What do you want? An API that interfaces to the X.500 names or the SubjectAltNames? Can't see a lot of point in the first but the second makes a lot of sense. In fact I think we must have several. Incidentally, the reason I discount LDAP in the Internet is precisely the fact it is now an enterprise resource. And enterprises are no more willing to share that with the Internet than their conversations with their lawyers. On Mon, Nov 17, 2014 at 3:43 PM, Tony Arcieri <bascule@gmail.com> wrote: > On Mon, Nov 17, 2014 at 9:47 AM, Nico Williams <nico@cryptonector.com> > wrote: >> >> As for HTTP... HTTP doesn't do what LDAP does. One could define a >> DAP over HTTP (an "API"), and that'd be a fine thing. > > > Is anyone actually working on that? It's definitely something I'd be > interested in > > -- > Tony Arcieri
- [therightkey] Proposal for working on PKIX revoca… Dr. Massimiliano Pala
- Re: [therightkey] [pkix] Proposal for working on … Stephen Farrell
- Re: [therightkey] [pkix] Proposal for working on … Massimiliano Pala
- Re: [therightkey] [pkix] Client-side OCSP staplin… Massimiliano Pala
- Re: [therightkey] [pkix] Proposal for working on … Paul Hoffman
- Re: [therightkey] [pkix] Proposal for working on … Phillip Hallam-Baker
- Re: [therightkey] [pkix] Proposal for working on … Trevor Freeman
- Re: [therightkey] [pkix] Proposal for working on … Phillip Hallam-Baker
- Re: [therightkey] Proposal for working on PKIX re… Ben Laurie
- Re: [therightkey] Proposal for working on PKIX re… Nico Williams
- Re: [therightkey] Proposal for working on PKIX re… Jeremy.Rowley
- Re: [therightkey] [pkix] Proposal for working on … Trevor Freeman
- Re: [therightkey] [pkix] Proposal for working on … Phillip Hallam-Baker
- Re: [therightkey] [pkix] Proposal for working on … Nico Williams
- Re: [therightkey] [pkix] Proposal for working on … Tony Arcieri
- Re: [therightkey] [pkix] Proposal for working on … Phillip Hallam-Baker
- Re: [therightkey] [pkix] Proposal for working on … Tony Arcieri
- Re: [therightkey] [pkix] Proposal for working on … Rob Stradling
- Re: [therightkey] [pkix] Proposal for working on … Nico Williams