From: Tim Moses <[email protected]> Date: Saturday, September 15, 2012 12:00 PM To: "[email protected]" <[email protected]> Subject: [wpkops] Third draft charter proposal
> <snip> > > Additionally, a number of applications (such as client authentication, > document signing, code signing, and email) may use the same trust anchors and > certificate-handling libraries as the ones used for server authentication on > the Web. Nevertheless, they may use the results in a way that is visibly > different from the way in which they are used for server authentication. I think the concern is that reused mechanisms can interfere with each other, not that results are used differently. > While these applications are considered outside the scope of this working > group, deliverables should (wherever practical within the available expertise > and time) identify other applications that exhibit identical behavior and > identify the implications of that behavior where they differ from those for > server authentication. I don't understand the reference to identical behavior. I suggest the following: Additionally, a number of applications (such as client authentication, document signing, code signing, and email) use the same trust anchors and certificate processing mechanisms as used for server authentication on the Web. This reuse creates problems in some situations. While these applications are outside the scope of this working group, deliverables should (wherever practical within the available expertise and time) identify mechanisms that are reused by other applications and identify the implications of that reuse.
_______________________________________________ wpkops mailing list [email protected] https://www.ietf.org/mailman/listinfo/wpkops
