W3C home > Mailing lists > Public > www-xkms@w3.org > December 2005

Re: XKMS 2: errata: X.509 DNs not in RFC 2253 format

From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Date: Thu, 15 Dec 2005 10:51:58 +0000
Message-ID: <43A14ACE.8050202@cs.tcd.ie>
To: jose.kahan@w3.org
CC: "Manger, James H" <James.H.Manger@team.telstra.com>, www-xkms@w3.org



Jose Kahan wrote:
> Hi folks,
> 
> I'm at a loss at evaluating whether the following two erratas have been accepted
> or not.
> 
> Thanks for your help,
> 
> -jose
> 
> On Mon, Oct 17, 2005 at 10:19:52AM +1000, Manger, James H wrote:
> 
> Errata 1:
> 
> 
>>XML-Signature formats X.509 distinguished names (DNs) according to RFC 2253 "LDAP (v3): UTF-8 representation of distinguished names".  XKMS should use the same format.
>>
>>XMKS 2.0 uses the following text as DNs in paragraphs 186, 243, 246 & 252:
>>
>>  C="UK" O="CryptoGuys Ltd." CN="Bob"
>>  C="US" O="Alice Corp" CN="Alice Aardvark"
>>  C="UK" O="Bob Corp" CN="Bob Baker"
>>
>>The text for these DNs should be:
>>
>>  CN=Bob,O=CryptoGuys Ltd.,C=UK
>>  CN=Alice Aardvark,O=Alice Corp,C=US
>>  CN=Bob Baker,O=Bob Corp,C=UK

Looks like a fine change to me.

> Errata 2:
> 
> 
>>XKMS should explicitly state that the RFC 2253 is the format used for the <UseKeyWith> Identifier attribute (when the Application attribute is urn:ietf:rfc:2459).  Paragraph 186 in section 5.1.3 "Element <UseKeyWith>" is the appropriate place.
>>

As does that.

S.

> 
> 
> 
Received on Thursday, 15 December 2005 10:53:38 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:31:44 UTC