6 Oct 12:09
client was Re: Server Identity Verification in Application Protocols
tom.petch <cfinss <at> dial.pipex.com>
2009-10-06 10:09:19 GMT
2009-10-06 10:09:19 GMT
This I-D is very hot on the fact that it is about Server Identity, yet technically, I see no reason why the logic does not also apply equally to client identity. In networking, with the networking box as server, and the client being the one that wants to change the configuration, then client identity is the one that matters, not server. I would like to add an initial paragraph to the effect that although the memo is written in terms of Server Identity, there is no technical reason why the processes described cannot be applied to verifying the Client Identity. Tom Petch ----- Original Message ----- From: "Peter Saint-Andre" <stpeter <at> stpeter.im> To: <apps-discuss <at> ietf.org> Sent: Saturday, October 03, 2009 12:02 AM Subject: Server Identity Verification in Application Protocols > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > A new version of draft-saintandre-tls-server-id-check is available: > > http://www.ietf.org/id/draft-saintandre-tls-server-id-check-02.txt > > Other than the informational appendix, the diff from the -01 version is > relatively minor. Feedback is welcome. > > Peter > > - -- > Peter Saint-Andre > https://stpeter.im/ > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.8 (Darwin) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ > > iEYEARECAAYFAkrGeG4ACgkQNL8k5A2w/vzsrQCgzyFjxSkoQBp3PVqUmC4/p741 > 0HgAniMwjH+eUXwpokRKU8ZXcIJlEDLu > =7pso > -----END PGP SIGNATURE----- > _______________________________________________ > Apps-Discuss mailing list > Apps-Discuss <at> ietf.org > https://www.ietf.org/mailman/listinfo/apps-discuss
RSS Feed