To:
Simon Josefsson <jas@extundo.com>
Cc:
Derek Atkins <warlord@MIT.EDU>, Edward Lewis <lewis@tislabs.com>, <dnssec@cafax.se>
From:
Jakob Schlyter <jakob@crt.se>
Date:
Fri, 31 Aug 2001 17:36:10 +0200 (MEST)
Delivery-Date:
Fri Aug 31 20:35:36 2001
In-Reply-To:
<Pine.LNX.4.33.0108311721450.30765-100000@lie.extundo.com>
Sender:
owner-dnssec@cafax.se
Subject:
Re: CERTificates and public keys
On Fri, 31 Aug 2001, Simon Josefsson wrote: > > correct, but cert implies that it contains a public key and a signature. > > Well, the CERT RR already discuss CRLs which isn't a signed public key. > > It seems to me that the CERT RR is a everything-applications-might-want- > that-is-PKI-related RR. everything stored in a CERT RR has its own signature and this difference is very important to consider. jakob