Bugtraq mailing list archives
Re: Verisign certificates problem
From: "Ogle Ron (Rennes)" <OgleR () THMULTI COM>
Date: Mon, 26 Mar 2001 08:51:05 +0200
I'd have to say though that the CDP field works rather well. I run a rather large set of CAs. When we were just using the monolithic CRL, each client takes a long time to do verification of certificates. When we switched to the distribution point extension, verification checking time fell considerably. Ron Ogle Thomson multimedia Rennes, FR -----Original Message----- From: Peter Gutmann [mailto:pgut001 () cs auckland ac nz] Sent: Monday, March 26, 2001 8:20 AM To: BUGTRAQ () SECURITYFOCUS COM Subject: Re: Verisign certificates problem Elias Levy <aleph1 () SECURITYFOCUS COM> writes:
Actually checking most of the CA certificates shipped with IE less than
half
have a CPD field. Of the big CA only Entrust seems to use the field.
That's not surprising, they invented and, I believe, patented the thing. Peter.
Current thread:
- Verisign certificates problem Sinclair, Roy (Mar 23)
- CRLs (was Re: Verisign certificates problem j eric townsend (Mar 25)
- Re: CRLs (was Re: Verisign certificates problem Patrick Patterson (Mar 26)
- <Possible follow-ups>
- Re: Verisign certificates problem Elias Levy (Mar 24)
- Re: Verisign certificates problem Peter Gutmann (Mar 25)
- Re: Verisign certificates problem Peter Gutmann (Mar 25)
- Re: Verisign certificates problem Ogle Ron (Rennes) (Mar 26)
- Re: Verisign certificates problem Michael Reilly (Mar 27)
- Re: Verisign certificates problem Wham Bang (Mar 27)
- CRLs (was Re: Verisign certificates problem j eric townsend (Mar 25)