OCSP rqmt agreed?

I believe from the discussion on the teleconference that we are agreed that the wording on the requirement
reqarding OCSP is acceptable.

Currently the requirement 2.5.4 [1] states that 

"The following KeyInfo formats MUST be supported: KeyName, KeyValue, and RetrievalMethod.The X509Certificate KeyInfo format MUST be supported by a trust server if the service claims interoperability with PKIX X.509. Additional KeyInfo formats such as X509Chain, OCSP, and X509CRL MAY be supported. X509Chain and OCSP MUST be defined in the XKMS specifications. X509CRL is defined in the XML Signature recommendation.The XKMS registration Private format MUST be supported if the service supports either service generated key pairs or key recovery.[List(Sebastien Pouliot)]"


In brief - support for the OCSP KeyInfo format is MAY, but the XKMS specification MUST define the OCSP format.

br, Frederick

[1] http://www.w3.org/2001/XKMS/Drafts/xkms-req.html

---------------------------------------
Frederick Hirsch
Technology Architect
Nokia Mobile Phones
5 Wayside Rd., Burlington, MA 01803 USA
frederick.hirsch@nokia.com

Received on Friday, 22 November 2002 09:19:39 UTC