[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [iaik-ssl] [iaik-jce] Is Date Validation part of SSL Handshake implementation ?

All certificate verification is an application policy decision to be
performed by the TrustDecider. The SSL library does not do anything in
this respect.

 Andreas Sterbenz              mailto:Andreas.Sterbenz@iaik.tu-graz.ac.at

-----Ursprüngliche Nachricht-----
Von: Sundar Krishnan <sundark@india.hp.com>
An: <iaik-ssl@iaik.tu-graz.ac.at>; <iaik-jce@iaik.tu-graz.ac.at>
Gesendet: Samstag, 07. August 1999 03:25
Betreff: [iaik-jce] Is Date Validation part of SSL Handshake
implementation ?

> A basic question : Is date validation of a Certficate part of the
> Handshake Process ? Let me elaborate. Assume that a Server presents
> Certficate following Client Hello for Server Authentication. Also
> that I am using IAIK's libraries to build a ClientTrustDecider. Now,
> will IAIK Handshake take care of checking if the date of the presented
> Server Certficate is valid ? The User code will have other checks like
> checking the Subject DN, verifying the CA, and then the Chain etc. In
> essence, is date validation part of the SSL Protocol implementation ?
> Rgds
> Sundar