distributing certs and trusted identities...

Pat (pat@pat.net)
Fri, 6 Jun 1997 13:17:14 -0500

Date: Fri, 6 Jun 1997 13:17:14 -0500
From: Pat <pat@pat.net>
To: java-security@web2.javasoft.com
Subject: distributing certs and trusted identities...

In a recent mailing in the java-security archive, Marianne M. wrote:

> That's intentional in JDK 1.1, but the identity database will evolve
> for JDK 1.2 to use X.509v3 certs, and to separate the notion of the
> cert database from the Java runtime's internal notion of identities.
>
> Also there will not be the trusted/untrusted attribute for an
> identity. Permissions will be granted to a signer based on
> externally configured policy. Permissions are fine-grained.

Does this mean that the Sun provider package will no longer support the
"trusted" (course) level of security, or just that finer control will be
there too? Will javakey still provide "trusted" for backward compatability?

I'm assuming that the details of how the database will change are pretty
far along by now... Could you elaborate on them?

Thanks,
Pat