oysteikt/heimdal
0
0
Fork 0
Code Issues 5 Pull Requests Releases Activity

merge with old todo file

Browse Source 
git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@17194 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
2006-04-24 06:18:08 +00:00
parent f5fa0a6f38
commit 1d1cb24d77
1 changed files with 11 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
lib/hx509/TODO
View File

@@ -2,14 +2,12 @@ $Id$
x501 name x501 name
parsing parsing
comparing comparing (ldap canonlisation rules)
DSA support DSA support
DSA2 support DSA2 support
SHA2 support
x509 policy mappings support x509 policy mappings support
path validation
crypto crypto
make signing alg depend on signer if not given make signing alg depend on signer if not given
@@ -18,6 +16,7 @@ tests
nist tests nist tests
name constrains name constrains
policy mappings policy mappings
http://csrc.nist.gov/pki/testing/x509paths.html
building path using Subject/Issuer vs SubjKeyID vs AuthKeyID building path using Subject/Issuer vs SubjKeyID vs AuthKeyID
negative tests negative tests
@@ -35,3 +34,12 @@ certificate request
web server/client web server/client
jabber server/client jabber server/client
email email
x509 issues:
OtherName is left unspecified, but its used by other
specs. creating this hole where a application/CA can't specify
policy for SubjectAltName what covers whole space. For example, a
CA is trusted to provide authentication but not authorization.