[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: TAA definition

To: Carl Wallace <CWallace@xxxxxxxxxxxx>, Black_David@xxxxxxx, turners@xxxxxxxx, kent@xxxxxxx
Subject: RE: TAA definition
From: Paul Hoffman <paul.hoffman@xxxxxxxx>
Date: Fri, 24 Aug 2007 08:56:57 -0700
Cc: ietf-trust-anchor@xxxxxxxx
In-reply-to: <886F5D4C78AFB14D87261206BFB9612E1D31D8D9@xxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.vpnc.org/ietf-trust-anchor/mail-archive/>
List-id: <ietf-trust-anchor.vpnc.org>
List-unsubscribe: <mailto:ietf-trust-anchor-request@vpnc.org?body=unsubscribe>
References: <886F5D4C78AFB14D87261206BFB9612E1D31D8D9@xxxxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-trust-anchor@xxxxxxxxxxxxx


At 11:41 AM -0400 8/24/07, Carl Wallace wrote:

 > I agree.  A Trust Store Anchor may correspond to a TAA, but
 the trust anchors that are installed clearly do not (e.g.,
 Verisign's trust anchors will be installed by a lot of
 entities that aren't part of Verisign).
I don't think we should preclude the use of application TAs as TSAs.An application TA could function a trust store anchor in cases wherean enterprise TA is be used to sign TA management requests andserves as the root of a PKI, for example.

I don't think David was precluding application TAs as TSAs. He wassaying that they all not all TA owners should be TAAs.


--Paul Hoffman, Director
--VPN Consortium

References:
- RE: TAA definition
  - From: Carl Wallace

Prev by Date: RE: TAA definition
Next by Date: RE: TAA definition
Previous by thread: RE: TAA definition
Next by thread: RE: TAA definition
Index(es):
- Date
- Thread