Re: What makes a certificate invalid?

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What makes a certificate invalid?

From:	Daniel Kahn Gillmor
Subject:	Re: What makes a certificate invalid?
Date:	Fri, 11 Dec 2009 11:23:03 -0500
User-agent:	Mozilla-Thunderbird 2.0.0.22 (X11/20091109)

On 12/10/2009 07:49 PM, Daniel Kahn Gillmor wrote:
> I'm sure someone else can come up with possible ways i've missed that a
> certificate could be invalid ;)

i thought of another way this morning:

10) if the certificate contains an X.509v3 extension that is marked
"critical" that it does not know how to process, it MUST reject the
certificate:

  http://tools.ietf.org/html/rfc5280#section-4.2.1.10

hth,

        --dkg

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

What makes a certificate invalid?, Shanishchara, Kunal, 2009/12/10
- Re: What makes a certificate invalid?, Daniel Kahn Gillmor, 2009/12/10
  - Re: What makes a certificate invalid?, lfinsto, 2009/12/11
  - Re: What makes a certificate invalid?, Daniel Kahn Gillmor <=
    - RE: What makes a certificate invalid?, Shanishchara, Kunal, 2009/12/11
    - Message not available
    - RE: What makes a certificate invalid?, Shanishchara, Kunal, 2009/12/11
    - Re: What makes a certificate invalid?, Rupert Kittinger-Sereinig, 2009/12/11
  - Re: What makes a certificate invalid?, Rupert Kittinger-Sereinig, 2009/12/11
    - Re: What makes a certificate invalid?, Daniel Kahn Gillmor, 2009/12/11

Prev by Date: Re: What makes a certificate invalid?
Next by Date: Re: What makes a certificate invalid?
Previous by thread: Re: What makes a certificate invalid?
Next by thread: RE: What makes a certificate invalid?
Index(es):
- Date
- Thread