Dear all,
Actually, I'm a student in the Mainland China having a reserach on the
"Digital Certificate" applications and limitations --- e-commerce and
cryptograhpy are still relatively new to our region.
I'm interested in all experts' views on evaulating the distribution
of the CRLCertificate Revocation List) using HTTPS (HTTP over SSL) instead
of LADP over SSL regarding the different aspects,
e.g,
- what are the key considerations(security, performance)for choosing either
protocol?
- what are the current preferred practice as performed by the
various CAs? (e.g. thawte, belsign)?
Regarding the CRL distribution mechanism (HTTPS,LDAP), I have found few
topics yet there are of 98 versions:
a) Phillip Hallum-Baker
http://csrc.nist.gov/pki/twg/papers/hallum-baker.html
b) Mike Myers
http://csrc.nist.gov/pki/twg/twg98_6.html
Therefore, would be greatly appreciated for all the comments and advice from
all the knowledge leads.
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
