[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: specification language?

To: Jueneman@gte.com
Subject: Re: specification language?
From: Simon Spero <ses@tipper.oit.unc.edu>
Date: Thu, 7 Mar 1996 14:36:46 -0800 (PST)
Cc: Andy Brown <a.brown@nexor.co.uk>, spki@c2.org
In-Reply-To: <313F360B-00000001@wotan.gte.com>
Sender: owner-spki@c2.org

On Thu, 7 Mar 1996 Jueneman@gte.com wrote:

> >Taking X.509 and flatenning some of the most egregious levels of 
> >hierarchy could go a long way to getting things started, even if it just 
> >suggests some of the data types to use. 
> 
> What do you mean by "hierarchy" in this context? Are you referring to the 
> hierarchy of CAs, or to something else?

Whooo - I can see that what I wrote could be confusing - I'd better 
clarify fast!

When I say, flatten hierachies, I'm referring to the data types used to 
build the certificate, and *NOT* any ceritificate chaining. For example, 
X.500 DNs are of the form 

name ::= sequence of rdn
rdn  ::= set of ava
ava  ::= sequence { attr string, value string}

which LDAP flattens to 

name ::= string -- where the raw X500 name is converted to ascii using 
                -- a few simple rules (see RFC1485)

Simon



---
They say in  online country             So which side are you on boys
There is no middle way                  Which side are you on
You'll either be a Usenet man           Which side are you on boys
Or a thug for the CDA                   Which side are you on?
  National Union of Computer Operatives; Hackers, local 37   APL-CPIO

References:

Re: specification language?

From: Jueneman@gte.com

Prev by Date: Certificate Revocation in SET
Next by Date: Re: Man in the middle attacks
Prev by thread: Re: specification language?
Next by thread: Re: specification language?
Index(es):
- Main
- Thread