- From: Marcos Caceres <marcosscaceres@gmail.com>
- Date: Fri, 13 Feb 2009 23:26:32 +1000
- To: Thomas Roessler <tlr@w3.org>
- Cc: Arthur Barstow <art.barstow@nokia.com>, Mark Priestley <Mark.Priestley@vodafone.com>, Frederick Hirsch <frederick.hirsch@nokia.com>, public-webapps <public-webapps@w3.org>
2009/2/5 Thomas Roessler <tlr@w3.org>: > On 4 Feb 2009, at 21:45, Arthur Barstow wrote: > >> * Is supporting OCSP and CRL a MUST for v1? > > Just for clarity, there are two possible requirements around OCSP and CRLs: > > - support embedding an OCSP response (or a CRL, or a link to a CRL) in the mark-up of signatures > - support querying OCSP responders (and CRLs) as part of certificate validation > > I'd argue that the latter is more important than the former. FWIW, I also think the latter is more important. -- Marcos Caceres http://datadriven.com.au
Received on Friday, 13 February 2009 13:27:15 UTC