[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: ANNOUNCEMENT: SPKI mailing list and BOF at Los Angeles
- To: cme%cybercash.com@bnr.ca
- Subject: Re: ANNOUNCEMENT: SPKI mailing list and BOF at Los Angeles
- From: "marcus (m.d.) leech" <mleech@bnr.ca>
- Date: Mon, 26 Feb 1996 20:09:33 -0500
- Cc: Jueneman%gte.com@bnr.ca, spki%c2.org@bnr.ca
- In-Reply-To: <v02140b11ad57c313bdcd@[204.254.34.231]>
- Organization: Nortel Technologies, System Security Services
- Sender: owner-spki@c2.org
- X400-Content-Type: P2-1984 (2)
- X400-Mts-Identifier: [/PRMD=BNR/ADMD=TELECOM.CANADA/C=CA/;<199602270109.AA090513373@bcarh6]
- X400-Originator: mleech@bcarh6dc.ott.bnr.ca
- X400-Received: by mta bnr.ca in /PRMD=BNR/ADMD=TELECOM.CANADA/C=CA/; Relayed; Mon, 26 Feb 1996 20:09:41 -0500
- X400-Received: by /PRMD=BNR/ADMD=TELECOM.CANADA/C=CA/; Relayed; Mon, 26 Feb 1996 20:09:34 -0500
- X400-Received: by /PRMD=BNR/ADMD=TELECOM.CANADA/C=CA/; Relayed; Sat, 24 Feb 1996 20:09:33 -0500
- X400-Received: by /PRMD=BNR/ADMD=TELECOM.CANADA/C=CA/; Relayed; Sat, 24 Feb 1996 20:09:33 -0500
-----BEGIN PGP SIGNED MESSAGE-----
> I'll give you more time to respond to my proposal -- but the problems I see
> are with the distinguished names themselves: the concept of having a unique
> identifier of some human being as a prerequisite to generating a certificate.
>
I had a moderately lengthy discussion with Warwick Ford in the hall outside
his office today about this issue. With the X.509 V3 certificate,
the PKIX group very well *could* recommend a profile of X.509 that
uses NUL values in the DistinguishedName fields, and uses the
alternateName types in the standard extensions. Those extensions
include provision for many of the favourite "handles" of the
IETF community--DNS names, rfc822 addresses, etc.
To be fair to X.509, and to the PKIX group, DistinguishedNames are not
a necessary prerequisite to generating a certificate.
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQBVAwUBMTJZy6p9EtiCAjydAQGbGwH/UudD2p2OpeT8/fBkJtjjnF1jMElgXE1e
IIAfjUL6ytom4caRacD/Hn/9QeV5NvsKc5Lx38YlpviiNjF3zR42GQ==
=mLEd
-----END PGP SIGNATURE-----
--
----------------------------------------------------------------------
Marcus Leech Mail: Dept 4C16, MS 238, CAR
Systems Security Architect Phone : (ESN) 395-4901 (613) 763-9145
Systems Security Services Fax : (ESN) 393-7679 (613) 763-7679
Nortel Technologies mleech@bnr.ca
-----------------Expressed opinions are my own, not my employers------
References: