Richard Levitte - VMS Whacker wrote:
Well, with my scheme, the entire chain goes from the leaf to your
point of trust, not further. Checking CRLs between those two points
makes sense, doesn't it? Henrik Nordström outlined the reasons to do
so in message
[EMAIL PROTECTED].
Yes, of course.
In message [EMAIL PROTECTED] on Thu, 18 Sep 2003 16:04:28 +0200, Mats Nilsson
[EMAIL PROTECTED] said:
mats.nilsson Sorry. Imprecise wording. I meant that since I would
mats.nilsson like to be able to terminate the certificate validation
mats.nilsson at a particular point in the certificate
Hi
Using OpenSSL-0.9.7b.
We are building an application where we want to have a flexible model
for certificate trust. In essence, we want to be able to say:
CA0 (self signed) is explicitly trusted
CA1 (signed by CA0) is explicitly trusted
CA2 (signed by CA1) is neutral
On Wed, Sep 17, 2003, Mats Nilsson wrote:
Hi
Using OpenSSL-0.9.7b.
We are building an application where we want to have a flexible model
for certificate trust. In essence, we want to be able to say:
CA0 (self signed) is explicitly trusted
CA1 (signed by CA0) is