Re: Using X.500 to determine presentationAddresses

[Christian Huitema <Christian.Huitema@sophia.inria.fr>]

Folks,

Both the LDAP and the "PresentationAddress" debate indicate how buggy X.500
is:

1) The LDAP debate showed that some implementations are perfectly conformant,
yet don't do what the user want. Behind that lies a hard fact: we dont know
how to distribute "searches" -- that is, in general. Distributing them along a
hierarchy almost work, provided the hierarchy is not "too branchy". Top levels
are traditionally very very branchy... 

2) The PSAP debate showed that people are naturally reluctant to duplicate
their "machine addresses" in all their "application" entries. Indeed, that is
the first rule of data base management -- never duplicate information, less you
end up with inconsistant updates. In a relational SGBD, the "application"
tuple would have a "support system identifier" entry, and inherit the NSAP
address from this entry. The X.500 schema, from that point of view, is very
naive.

Maybe we should start defining our own X.500 dialect, adding whatever
features are required. In the short term, it may mean that "top level" DSAs
should perform massive replications -- i.e. collect the full description of
all the member organizations -- following the model of "data base servers"
rather than that of "DNS servers". 

The single reservation I have with this model is that the more "service" we
place in the top level servers, the less we can justify a monopoly, and the
more we need to go away from the hierarchical organization of servers.

Christian Huitema