[caops-wg] Trust anchor definition - newer reference
Milan Sova
sova at cesnet.cz
Wed Jun 4 04:58:38 CDT 2008
Hi again.
Milan Sova wrote:
> Hi.
>
> This is the trust anchor definition form the Trust Anchor Management
> group strawman charter
> <http://www.vpnc.org/ietf-trust-anchor/mail-archive/msg00350.html>
>
>
>
> A trust anchor represents an authoritative entity represented via a public
> key and associated data. The public key is used to verify digital
> signatures and the associated data is used to constrain the types of
> information for which the trust anchor is authoritative. Relying parties
> use trust anchors to determine if digitally signed information objects are
> valid by verifying digital signatures using the trust anchor's public key
> and by enforcing the constraints expressed in the associated data.
>
>
This is a newer text from the "Trust Anchor Management" I-D
<http://www.ietf.org/internet-drafts/draft-ietf-pkix-ta-mgmt-problem-statement-01.txt>:
A trust anchor is an authoritative entity represented via a public
key and associated data. The public key is used to verify digital
signatures and the associated data is used to constrain the types of
information for which the trust anchor is authoritative. A relying
party uses trust anchors to determine if a digitally signed object is
valid by verifying a digital signature using the trust anchor's
public key, and by enforcing the constraints expressed in the
associated data for the trust anchor.
I'd prefer citing this one.
Regards
--
Milan Sova
sova at cesnet.cz
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 2816 bytes
Desc: S/MIME Cryptographic Signature
Url : http://www.ogf.org/pipermail/caops-wg/attachments/20080604/eb03ee42/attachment.bin
More information about the caops-wg
mailing list