DNSSEC mailing list

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Jakob Schlyter <jakob@crt.se>
Cc: Derek Atkins <warlord@MIT.EDU>, Scott Rose <scottr@antd.nist.gov>, <dnssec@cafax.se>
From: Simon Josefsson <simon+dnssec@josefsson.org>
Date: Tue, 04 Sep 2001 21:35:42 +0200
In-Reply-To: <Pine.BSO.4.33.0109041919570.15752-100000@fonbella.crt.se>(Jakob Schlyter's message of "Tue, 4 Sep 2001 19:23:34 +0200 (MEST)")
Sender: owner-dnssec@cafax.se
User-Agent: Gnus/5.090004 (Oort Gnus v0.04) Emacs/21.0.105
Subject: Re: CERTificates and public keys

Jakob Schlyter <jakob@crt.se> writes:

> I'm not sure how we can move forward on this discussion - we either have
> people who think it's misuse to put raw public keys in CERT and people who
> doesn't think there is a problem with doing that.

It is already possible to put a public key that is not signed by a CA
in a CERT record.  Let's use it.

(Ok, if SSH wants a certificate type number in CERT of its own, they
need to register one.  But the same holds for KEY.)

Follow-Ups:
- Re: CERTificates and public keys
  - From: Ólafur Guðmundsson <ogud@ogud.com>
- Re: CERTificates and public keys
  - From: Jakob Schlyter <jakob@crt.se>
- Re: CERTificates and public keys
  - From: Edward Lewis <lewis@tislabs.com>

References:
- Re: CERTificates and public keys
  - From: Jakob Schlyter <jakob@crt.se>

Prev by Date: Re: CERTificates and public keys
Next by Date: Re: CERTificates and public keys
Prev by thread: Re: CERTificates and public keys
Next by thread: Re: CERTificates and public keys
Index(es):
- Date
- Thread

Home | Date list | Subject list