search

readium / lcp-specs

🔐 Releases, drafts and schema for Readium LCP
https://readium.org/lcp-specs/
BSD 3-Clause "New" or "Revised" License
10 stars 5 forks source link

"validate the presence of the Provider Certificate" #24

Open murata2makoto opened 6 years ago

murata2makoto commented 6 years ago

This phrase in 5.5.1 is confusing. Does this make sure that the provider certificate exists? The following sentence appears to check the validity of the Provider Certificate.

llemeurfr commented 5 years ago

Proposal for 5.5.1, re-ordered, reflecting the actual implementation:

  1. The Reading System must check the signature of the Provider Certificate using the Root Certificate it embeds.

  2. If a network connection is available, it must periodically update its Certificate Revocation List, as defined in [X509].

  3. It must check that the Certificate was not revoked, as defined in [X509].

  4. It must check that the Certificate was not expired when the License Document was last updated.

danielweck commented 5 years ago

Linky: https://readium.org/lcp-specs/readium-lcp-specification#55-validating-the-certificate-and-signature

thkim2015 commented 5 years ago

Above the link is not accessible anymore. See: https://github.com/readium/lcp-specs/blob/master/releases/lcp/latest.md#551-validating-the-certificate