Re: Comments on draft-ietf-secsh-x509-03

To: galb-list%vandyke.com@localhost, pgut001%cs.auckland.ac.nz@localhost
Subject: Re: Comments on draft-ietf-secsh-x509-03
From: pgut001%cs.auckland.ac.nz@localhost (Peter Gutmann)
Date: Tue, 21 Mar 2006 23:09:31 +1200

Joseph Galbraith <galb-list%vandyke.com@localhost> writes:

>This was our original intent (and if you look at the first couple of versions
>of the document, what we did.)

Yeah, I wondered why it'd changed so suddenly.

>I'd be really happy to go back to simply describing how to encode x.509
>certificates and signatures in the SSH protocol and call this draft done.
>
>But-- I guess we need people who care about this to come out of the woodwork
>and speak up now about what the working group wants out of this document.

I'd prefer to just have the format documented and call it done.  Fiddling with
certificate-management policy is something that other WGs have spent
(literally) years over, and reached consensus only in the sense that everyone
was equally unhappy with the result... I'd say document the bits on the wire,
and leave the policy side to someone else to write up in their own draft.

Peter.

References:
- Re: Comments on draft-ietf-secsh-x509-03
  - From: Joseph Galbraith

Prev by Date: Re: FW: Please re-review draft-ietf-secsh-publickeyfile [I06-050928-0006]
Next by Date: [galb%vandyke.com@localhost: Re: draft-ietf-secsh-publickeyfile]
Previous by Thread: Re: Comments on draft-ietf-secsh-x509-03
Next by Thread: RFC 4419 on Diffie-Hellman Group Exchange for the Secure Shell (SSH) Transport Layer Protocol
Indexes:

Home | Main Index | Thread Index | Old Index