You're not the only one; we (Zolera) brought it up in our initial position paper. [1] It seems pretty clear that "post to fixed URL" is how everyone is going to start doing this, and that does raise issues, but it's a nearly intractable problem, and I do think "design how to get a trust anchor" is beyond our scope. The OCSP technique won't always work since XKMS is designed to work with raw keys. /r$ [1] http://www.w3.org/2001/07/xkms-ws/positions/zolera_xkms_position.html -- Zolera Systems, Securing web services (XML, SOAP, Signatures, Encryption) http://www.zolera.comReceived on Wednesday, 30 January 2002 21:55:58 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 20 September 2007 14:30:48 GMT