KMIP-interop-tech

 View Only

  • 1.  FW: Small omission in KMIP standard

    Posted 07-02-2012 05:47
    What should be done with the fresh attribute after a rekey operation? The specification indicates that it should be copied from the key being replaced if you believe Table 131 (and therefore could be false even though the new key has never been served up to a client), or should be set to true if you believe section 3.34. I agree with Michael (see below) that the fresh attribute should be set to true after a rekey operation. Does anyone have another opinion? John


  • 2.  Re: [kmip-interop-tech] FW: Small omission in KMIP standard

    Posted 07-02-2012 05:53
    I too agree with Michael (and John) that Fresh should be set for the new object and should not be copied out of the original object. This applies to both ReKey and ReKeyKeyPair. This is how the Cryptsoft C interop server handles things - i.e. Fresh is always set to true for the replacement object. Tim. On 2/07/2012 3:45 PM, John Leiseboer wrote: > What should be done with the fresh attribute after a rekey operation? The specification indicates that it should be copied from the key being replaced if you believe Table 131 (and therefore could be false even though the new key has never been served up to a client), or should be set to true if you believe section 3.34. > > I agree with Michael (see below) that the fresh attribute should be set to true after a rekey operation. Does anyone have another opinion? > > John > >
    Original Message


Related Content