[xmppwg] Review of draft-meyer-xmpp-sasl-cert-management-01

Alexey Melnikov alexey.melnikov at isode.com
Mon Mar 23 08:40:45 CDT 2009


Dirk Meyer wrote:

>Alexey Melnikov wrote:
>  
>
>>Dirk Meyer wrote:
>>    
>>
>>>Eric Rescorla wrote:
>>>      
>>>
>>>>S 6.
>>>><Why specify SHA-1 as the only digest?
>>>>        
>>>>
>>>It is only an example. A server can also use ids starting from zero. It
>>>is just something unique.
>>>      
>>>
>>This was bothering me as well. Are ids human readable?
>>
>They don't have to. They are only used to remove certificates later. A
>user interface should show the name instead of the id.
>  
>
I think it would be better if the document have declared them as human 
readable (in which the suggestion to use SHA-1 in ids should be 
removed), or make them not intended for reading by humans and always 
recommend use of SHA-1 for finding them.




More information about the xmppwg mailing list