[openssl-users] dates, times, durations in next release (commands)

Michael Sierchio kudzu at tenebras.com
Tue Sep 6 18:03:02 UTC 2016


On Tue, Sep 6, 2016 at 10:40 AM, Jakob Bohm <jb-openssl at wisemo.com> wrote:
...

> Another related (long standing) issue is the inability to
> state an "as of" date to the various commands and APIs that
> validate signatures, certificates etc.  Both past and future
> dates can be needed in various use cases.

...

That would be really useful. An expired or revoked certificate may still be
used to verify a signature generated at a time when the certificate was
valid.

-- 
"Well," Brahma said, "even after ten thousand explanations, a fool is no
wiser, but an intelligent man requires only two thousand five hundred."

- The Mahābhārata
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160906/0eedf995/attachment.html>


More information about the openssl-users mailing list