Ives Steglich wrote:
sounds like a good plan ;), so that means a state or object data is not guranteed or trustworthy until its signed - for example - right?
No, the idea is that we decouple states and signatures. If you run a high risk CA then you can always sign a request or another object in a special state (this is what you mean - or at minimum I hope that you mean this). If you run a full offline system or a low risk CA (e.g. for testing only) then you can simply work without signing. My idea was to make the complete signing stuff more flexible and independent from other codeparts.
if we are at securing stuff - i would suggest, (its not direct connected to the object things ;) a configure option to sign/encrypt data-exchange - so data send from ra to ca gets signed/encrypted and vice versa...
so the ca can proof, the data is from a 'known' and 'trusted' ra-part of the infrastructure, so the ra can trust the data as to be from the real ca...
so there may be in the setup procedure also an option to generate exchange keys/certs for data-transport...
but i'm not sure if this is necessary, but i think it would be a good idea, if config-data gets pushed from ca to substructure elements, it should be somehow trustworthy whith what i overwrite my configuration down there at lower levels ;)
This was another idea because we ship access control rights and other critical stuff with these export/imports. I scheduled such things (like multi-person/multi-role approval) for me too a later phase. I want a working basic infrastructure and then we can add new features. My idea was to setup a basic framework which is better extensible than the old one and start adding new features.
I think the major thing is that we get the web stuff in the head working again. After this it is relatively easy to port the rest. I think I have to mail or phone with Martin about the next steps (he has experience with Mason).
Michael
P.S. I commit to HEAD in some minutes. -- _______________________________________________________________
Michael Bell Humboldt-Universitaet zu Berlin
Tel.: +49 (0)30-2093 2482 ZE Computer- und Medienservice Fax: +49 (0)30-2093 2704 Unter den Linden 6 [EMAIL PROTECTED] D-10099 Berlin _______________________________________________________________
smime.p7s
Description: S/MIME Cryptographic Signature
