I would like to know if it is possible to issue a certificate that contains a rule that specify that it can sign other certificates only if the domain is a sub-domain of a specified domain.
For instance A would issue a certificate to B with a critical extention (*.sopac.org|*@sopac.org) that would allow B to sign certificates only for use in sub-domains, eg: www.sopac.org, [EMAIL PROTECTED], [EMAIL PROTECTED],... but not www.othersopac.org, www.mycompany.com If it does not exist then we are missing something important... Franck Martin Network and Database Development Officer SOPAC South Pacific Applied Geoscience Commission Fiji E-mail: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> Web site: http://www.sopac.org/ <http://www.sopac.org/> Support FMaps: http://fmaps.sourceforge.net/ <http://fmaps.sourceforge.net/> Certificate: https://www.sopac.org/ssl/ This e-mail is intended for its addresses only. Do not forward this e-mail without approval. The views expressed in this e-mail may not be necessarily the views of SOPAC.
smime.p7s
Description: application/pkcs7-signature
