- From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
- Date: Mon, 17 Oct 2005 09:34:07 +0100
- To: "Manger, James H" <James.H.Manger@team.telstra.com>
- CC: www-xkms@w3.org
Adding such a requirement seems sensible, but is perhaps a tad more than an erratum, so I'd prefer if implementers say they agree with this change before it gets made, since I guess its possible someone does something slightly different. Having said that, I'm not sure what the W3C process is for deciding that an erratum is approved or not. (Jose - do you just decide?) Stephen. Manger, James H wrote: > XML-Signature formats X.509 distinguished names (DNs) according to RFC 2253 "LDAP (v3): UTF-8 representation of distinguished names". XKMS should use the same format. > > XMKS 2.0 uses the following text as DNs in paragraphs 186, 243, 246 & 252: > > C="UK" O="CryptoGuys Ltd." CN="Bob" > C="US" O="Alice Corp" CN="Alice Aardvark" > C="UK" O="Bob Corp" CN="Bob Baker" > > The text for these DNs should be: > > CN=Bob,O=CryptoGuys Ltd.,C=UK > CN=Alice Aardvark,O=Alice Corp,C=US > CN=Bob Baker,O=Bob Corp,C=UK > > XKMS should explicitly state that the RFC 2253 is the format used for the <UseKeyWith> Identifier attribute (when the Application attribute is urn:ietf:rfc:2459). Paragraph 186 in section 5.1.3 "Element <UseKeyWith>" is the appropriate place.
Received on Monday, 17 October 2005 08:35:07 UTC