Hi all, P.[277] of the spec. [1] says that: Services SHOULD accept Proof of Possession of the private key component of a public key to effect revocation of any key binding bound to that key. As the element ProofOfPossession is not allowed for a RevokeRequest, I understand that possession of the key may be proved in the KeyBindingAuthentication element. I think that maybe the reference to "Proof of Possession" should be removed from there to make things clear... Cheers, - -Guillermo [1] http://www.w3.org/2001/XKMS/Drafts/XKMS-PR-DRAFT/PR-DRAFT-xkms-part-1.html#XKMS_2_0_Paragraph_277Received on Friday, 3 December 2004 14:54:06 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Thursday, 20 September 2007 14:31:02 GMT