Ram A Moskovitz <[EMAIL PROTECTED]> writes: >On 01 Jul 2005 12:17:14 -0600, Anne & Lynn Wheeler <[EMAIL PROTECTED]> wrote: >> "Vivek" <[EMAIL PROTECTED]> writes: >> > Would'nt a time of expiry be more relevant (to a client) as part of >> > the ocsp response (just wondering if there was a reason that this >> > was already considered and rejected?) >>=20 >> OCSP sort of came on the scene in the mid-90s after I was pointing out >> that suggestions regarding converting the payment card network to >> "modern" PKI was actually a technology regression of 20 or more years.
>Are you sure OCSP didn't come out of the IETF as an effort to 'standardize'= >the VeriSign / Microsoft certificate status service that was launched as an= >extension to ActiveX? It came about as an effort to standardise the (in some cases patented) business models of one or two PKI vendors. That's why there are several mutually incompatible trust models in the standard, one for each vendor involved. Peter. _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
