On Tue, 24 Jul 2012, Matthijs Mekking wrote:
But both descriptions may be valid at the same point in time. So I would like to say the key can be Published and Active at the same time.
2. A key can have more than one state at a time.
I would not be in favour or using "states" where there is no clear distinction between the key states. Looking at implementors of key management software using state machines, we really should help them by using solid state definitions that do not overlap. So "Published" would need to include "not used for signing" so it can never overlap with "Active". Paul _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
