>I'm afraid I can't follow you here. Even assuming that we know >exactly how the CA computes its key identifier, certificates without >an AKI don't give us the slightest hint which CA key we should hash. Right. :) Which is why "finding the CA who signed this" is a hard problem. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
- Re: Suggestions for the next OpenSSL-Release Bodo Moeller
- Re: Suggestions for the next OpenSSL-Release Rich Salz
- Re: Suggestions for the next OpenSSL-Release Bodo Moeller
- Re: Suggestions for the next OpenSSL-Releas... Rich Salz
- Re: Suggestions for the next OpenSSL-Re... Bodo Moeller
- Re: Suggestions for the next OpenSSL-Release Salz, Rich
- Re: Suggestions for the next OpenSSL-Release Dr Stephen Henson
