NSS:Roadmap: Difference between revisions

NSS:Roadmap (view source)

55 bytes added , 22 December 2008

correct use of the word "delta"

106

edits

@@ Line 21: / Line 21: @@
 We are implementing libpkix, a new certificate path validation library that supports the certificate and CRL profile specified in RFC 3280.
-libpkix will add to NSS several features that are long overdue, such as certificate policy extension handling, cross-certification (Federal Bridge CA), and delta CRLs.
+libpkix will add to NSS several features that are long overdue, such as certificate policy extension handling, cross-certification (Federal Bridge CA), and (we hope) fetching of CRLs from certificates' CRLDP extensions.
 A new variant of CERT_VerifyCert will be added that uses libpkix for certificate path validation, and the old CERT_Verify functions will optionally use libPKIX with limited capability.
@@ Line 37: / Line 37: @@
 We are planning to implement a shareable database using [http://www.sqlite.org/ SQLite], which is in the "public domain". Other Mozilla teams are adopting SQLite, making it a logical choice for the NSS project as well.
-<b>Note:</b> This change will affect code inside the FIPS 140-2 defined cryptographic module boundaries. Therefore, we will need to document these changes and obtain a delta validation.
+<b>Note:</b> This change will affect code inside the FIPS 140-2 defined cryptographic module boundaries. Therefore, we will need to document these changes and obtain a new FIPS validation.
 [[ NSS_Shared_DB|Proposed Shareable Database Design Document is here.]]<br>