[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [caops-wg] OCSP - proxy certs

To: Jesus Luna <jluna@xxxxxxxxxx>
Subject: Re: [caops-wg] OCSP - proxy certs
From: Mike Helm <helm@xxxxxxxxxxxx>
Date: Fri, 10 Jun 2005 08:58:21 -0700
Cc: caops-wg@xxxxxxx, Manel Medina <medina@xxxxxxxxxx>
Delivered-to: grdfm-caops-wg-outgoing@mailbouncer.mcs.anl.gov
Delivered-to: grdfm-caops-wg@mailbouncer.mcs.anl.gov
In-reply-to: Your message of "Fri, 10 Jun 2005 13:27:02 +0200." <42A97906.8080400@ac.upc.edu>
Reply-to: helm@xxxxxxxxxxxx
Sender: owner-caops-wg@xxxxxxx

Jesus Luna writes:
> The client is the only one that can identify Proxy Certificates (in fact 
> it is pretty easy to do with the CoG Java implementation) therefore 
> releasing the OCSP server from such "customization".

How does this client do this?  

One of the motivations for doing OCSP is to lighten the 
cert checking burden on the client (to 1 ocsp status
check call).  So I think it would be good if we understood
this issue better....

Thanks, ==mwh

References:
- Re: [caops-wg] OCSP - proxy certs
  - From: Jesus Luna

Prev by Date: Re: [caops-wg] OCSP - proxy certs
Next by Date: Re: [caops-wg] OCSP section 4
Previous by thread: Re: [caops-wg] OCSP - proxy certs
Next by thread: Re: [caops-wg] OCSP - proxy certs
Index(es):
- Date
- Thread