[128820] in cryptography@c2.net mail archive
Re: The PKC-only application security model ...
daemon@ATHENA.MIT.EDU (Nicolas Williams)
Thu Jul 24 15:30:43 2008
Date: Wed, 23 Jul 2008 20:37:36 -0500
From: Nicolas Williams <Nicolas.Williams@sun.com>
To: Thierry Moreau <thierry.moreau@connotech.com>
Cc: Anne & Lynn Wheeler <lynn@garlic.com>,
Cryptography List <cryptography@metzdowd.com>
In-Reply-To: <4887B162.8000301@connotech.com>
On Wed, Jul 23, 2008 at 05:32:02PM -0500, Thierry Moreau wrote:
> The document I published on my web site today is focused on fielding
> certificateless public operations with the TLS protocol which does not
> support client public keys without certificates - hence the meaningless
> security certificate. Nothing fancy in this technique, just a small
> contribution with the hope to facilitate the use of client-side PKC.
Advice on how to generate self-signed certs for this purpose would be
good for an FYI, or even a BCP. I don't think we need extensions to any
protocols that support PKI to support bare PK (though some protocols
have both, e.g., IKE).
Nico
--
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
