[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Nailing down the definition of "trust anchor"

To: Lucy Lynch <llynch@xxxxxxxxxxxxxxxx>
Subject: Re: Nailing down the definition of "trust anchor"
From: Paul Hoffman <paul.hoffman@xxxxxxxx>
Date: Thu, 9 Aug 2007 15:53:37 -0700
Cc: ietf-trust-anchor@xxxxxxxx
In-reply-to: <20070809152755.S46118@xxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.vpnc.org/ietf-trust-anchor/mail-archive/>
List-id: <ietf-trust-anchor.vpnc.org>
List-unsubscribe: <mailto:ietf-trust-anchor-request@vpnc.org?body=unsubscribe>
References: <> <20070809152755.S46118@xxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-trust-anchor@xxxxxxxxxxxxx


At 3:30 PM -0700 8/9/07, Lucy Lynch wrote:

Really nit-picky question:


Really nit-picky is quite appropriate at this juncture!

do you really mean "to begin" or would "in" work... as in:
"A trust anchor is a public key and associated data used by arelying party in the process of validating a signature on a signedobject."

I really meant "to begin" because these are trust anchors, not keysthat might appear in the middle of a validation chain. For example,assume you are trying to validate key A, which chains to key B, whichchains to key C, which chains to key D which you trust inherently.Only key D is a trust anchor. Key B and key C are used "in theprocess of validating".


--Paul Hoffman, Director
--VPN Consortium

Follow-Ups:
- Re: Nailing down the definition of "trust anchor"
  - From: Leif Johansson

References:
- Nailing down the definition of "trust anchor"
  - From: Paul Hoffman
- Re: Nailing down the definition of "trust anchor"
  - From: Lucy Lynch

Prev by Date: RE: Nailing down the definition of "trust anchor"
Next by Date: Draft Charter
Previous by thread: Re: Nailing down the definition of "trust anchor"
Next by thread: Re: Nailing down the definition of "trust anchor"
Index(es):
- Date
- Thread