W3C home > Mailing lists > Public > public-wsc-wg@w3.org > December 2007

Linking certs

From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Date: Sat, 22 Dec 2007 14:04:07 +0000
Message-ID: <476D1957.6090907@cs.tcd.ie>
To: W3 Work Group <public-wsc-wg@w3.org>

Tyler was surprised on last week's call that there wasn't a
good way to link various certs belonging to the same end entity.

I personally hadn't thought about that before and actually
didn't see an obvious way to achieve the result so I've written
up a proposal [1] for a new cert extension that may solve the

I doubt that this'd be finished in time for us to make much use
of it in the our REC (though one never knows:-) but it might
be useful for a future version, and I'd definitely be interested
in whether or not it looks like something the browser vendors
and CA operators might want.

And of course, any and all comments on the draft are welcome.


PS: The draft is an individual submission, not an official IETF
PKIX WG work item, though I've posted a note to that list too
as they might end up taking it on (or not).

[1] http://tools.ietf.org/html/draft-farrell-pkix-other-certs-00
Received on Saturday, 22 December 2007 14:04:10 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:14:19 UTC