Trying again as subscriber the list. Sorry if this gets double posted.
On 4/8/09 10:49 AM, "Stefan Santesson" <ste...@aaa-sec.com> wrote: > Hi, > > My name is Stefan Santesson and I¹m co-chair of the PKIX working group in the > IETF. > The PKIX work group is responsible for the PKI related standards produced in > the IETF, among those the very first certificate standard RFC 2459. > > RFC 2459 is referenced through out section 4.10.11. The keygen element. > The problem is that RFC 2459 was obsoleted years ago by RFC 3279 and RFC 3280 > back in 2002. RFC 3280 was further Obsoleted by RFC 5280 in 2008 while RFC > 3279 has been updated by the RFCs 4055, 4491 and 5480. > > For example the following text in HTML 5 > > ³3. Let algorithm be an ASN.1 AlgorithmIdentifier structure as defined by > RFC2459, with the algorithm field giving the ASN.1 OID used to identify > signature algorithm, using the OIDs defined in section 7.2 ("Signature > Algorithms") of RFC2459, and the parameters field set up as required by > RFC2459 for AlgorithmIdentifier structures for that algorithm. [X690] > [RFC2459]² > > The se aspects of section 7.2. of RFC 2459 was moved to RFC 3279, which in > turn has been updated by the RFCs listed above. > > I would recommend that you look over these references. > > Stefan Santesson > AAA-sec.com > > > > >