W3C home > Mailing lists > Public > www-xkms@w3.org > December 2005

Re: XKMS 2: errata: X.509 DNs not in RFC 2253 format

From: Jose Kahan <jose.kahan@w3.org>
Date: Thu, 15 Dec 2005 11:42:10 +0100
To: "Manger, James H" <James.H.Manger@team.telstra.com>
Cc: www-xkms@w3.org, stephen.farrell@cs.tcd.ie
Message-ID: <20051215104210.GD29662@rakahanga.inrialpes.fr>

Hi folks,

I'm at a loss at evaluating whether the following two erratas have been accepted
or not.

Thanks for your help,

-jose

On Mon, Oct 17, 2005 at 10:19:52AM +1000, Manger, James H wrote:

Errata 1:

> XML-Signature formats X.509 distinguished names (DNs) according to RFC 2253 "LDAP (v3): UTF-8 representation of distinguished names".  XKMS should use the same format.
> 
> XMKS 2.0 uses the following text as DNs in paragraphs 186, 243, 246 & 252:
> 
>   C="UK" O="CryptoGuys Ltd." CN="Bob"
>   C="US" O="Alice Corp" CN="Alice Aardvark"
>   C="UK" O="Bob Corp" CN="Bob Baker"
> 
> The text for these DNs should be:
> 
>   CN=Bob,O=CryptoGuys Ltd.,C=UK
>   CN=Alice Aardvark,O=Alice Corp,C=US
>   CN=Bob Baker,O=Bob Corp,C=UK

Errata 2:

> XKMS should explicitly state that the RFC 2253 is the format used for the <UseKeyWith> Identifier attribute (when the Application attribute is urn:ietf:rfc:2459).  Paragraph 186 in section 5.1.3 "Element <UseKeyWith>" is the appropriate place.
> 
Received on Thursday, 15 December 2005 10:42:46 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:31:44 UTC