1995-10-06 - Re: Certificate proposal

Header Data

From: Jeff Weinstein <jsw@netscape.com>
To: cypherpunks@toad.com
Message Hash: 1e9261e8d1d00466cb788d19b9d7b81550b37a463f1cba5a936a63640a382092
Message ID: <3074D2F3.1E9@netscape.com>
Reply To: <9510021553.AA13756@tis.com>
UTC Datetime: 1995-10-06 06:59:32 UTC
Raw Date: Thu, 5 Oct 95 23:59:32 PDT

Raw message

From: Jeff Weinstein <jsw@netscape.com>
Date: Thu, 5 Oct 95 23:59:32 PDT
To: cypherpunks@toad.com
Subject: Re: Certificate proposal
In-Reply-To: <9510021553.AA13756@tis.com>
Message-ID: <3074D2F3.1E9@netscape.com>
MIME-Version: 1.0
Content-Type: text/plain


Hal wrote:
> 
> Jeff Weinstein <jsw@netscape.com> writes:
> >  I think the old idea of a certificate just binding a name and
> >a key is turning out to not be very useful.  That is why Netscape
> >Navigator 2.0 will support x509 version 3 certificates.  They allow
> >arbitrary attributes to be signed into a certificate.  In this new
> >world, you can think of a certificate as a way of binding a key with
> >various arbitrary attributes, one of which may be(but is not
> >required to be) a name.
> 
> OK, so suppose I want to send my credit card number to Egghead Software.
> I get one of these new-fangled certificates from somebody, in which
> VeriSign has certified that key 0x12345678 has hash 0x54321.  I think we
> can agree that by itself this is not useful.  So, it will also bind in
> some attribute.  What will that attribute be?

  It would be some value that would allow the credit card
authorization agency to match it up with the submitted credit
card number.  In the case of MasterCard's SEPP they are using
a salted hash of the Account Number, where the salt value is
unique per account, is secret, and is shared between the
bank and the card holder.

	--Jeff

-- 
Jeff Weinstein - Electronic Munitions Specialist
Netscape Communication Corporation
jsw@netscape.com - http://home.netscape.com/people/jsw
Any opinions expressed above are mine.

Thread

• Return to October 1995

• Return to “Adam Shostack <adam@homeport.org>”
• Return to “Bob Smart <smart@mel.dit.csiro.au>”
• Return to “Carl Ellison <cme@TIS.COM>”
• Return to “futplex@pseudonym.com (Futplex)”
• Return to “Hal <hfinney@shell.portal.com>”
• Return to “Jeff Weinstein <jsw@netscape.com>”
• Return to “Jiri Baum <jirib@sweeney.cs.monash.edu.au>”
• Return to “Raph Levien <raph@CS.Berkeley.EDU>”
• Return to “tomw@orac.engr.sgi.com (Tom Weinstein)”

• Return to “Wei Dai <weidai@eskimo.com>”

• 1995-10-02 (Mon, 2 Oct 95 08:57:01 PDT) - Certificate proposal - Carl Ellison <cme@TIS.COM>
  • 1995-10-02 (Mon, 2 Oct 95 10:13:58 PDT) - Re: Certificate proposal - Raph Levien <raph@CS.Berkeley.EDU>
    • 1995-10-02 (Mon, 2 Oct 95 15:03:37 PDT) - Re: Certificate proposal - Carl Ellison <cme@TIS.COM>
  • 1995-10-05 (Thu, 5 Oct 95 12:25:49 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
    • 1995-10-05 (Thu, 5 Oct 95 16:02:51 PDT) - Re: Certificate proposal - Bob Smart <smart@mel.dit.csiro.au>
    • 1995-10-06 (Thu, 5 Oct 95 17:56:42 PDT) - Re: Certificate proposal - Wei Dai <weidai@eskimo.com>
  • 1995-10-05 (Thu, 5 Oct 95 16:07:56 PDT) - Re: Certificate proposal - Jeff Weinstein <jsw@netscape.com>
    • 1995-10-06 (Thu, 5 Oct 95 17:32:26 PDT) - Re: Certificate proposal - Adam Shostack <adam@homeport.org>
  • 1995-10-06 (Thu, 5 Oct 95 17:41:02 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
  • 1995-10-06 (Thu, 5 Oct 95 20:59:01 PDT) - Re: Certificate proposal - tomw@orac.engr.sgi.com (Tom Weinstein)
    • 1995-10-06 (Fri, 6 Oct 95 00:04:44 PDT) - Re: Certificate proposal - Jeff Weinstein <jsw@netscape.com>
  • 1995-10-06 (Thu, 5 Oct 95 21:20:34 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
    • 1995-10-12 (Wed, 11 Oct 95 18:47:53 PDT) - Re: Certificate proposal - Jiri Baum <jirib@sweeney.cs.monash.edu.au>
      • 1995-10-12 (Thu, 12 Oct 95 00:08:31 PDT) - Re: Certificate proposal - futplex@pseudonym.com (Futplex)
  • 1995-10-06 (Thu, 5 Oct 95 23:59:32 PDT) - Re: Certificate proposal - Jeff Weinstein <jsw@netscape.com>
  • 1995-10-06 (Fri, 6 Oct 95 00:08:18 PDT) - Re: Certificate proposal - Jeff Weinstein <jsw@netscape.com>
  • 1995-10-06 (Fri, 6 Oct 95 12:12:42 PDT) - Re: Certificate proposal - tomw@orac.engr.sgi.com (Tom Weinstein)