RE: draft-ietf-pkix-rfc2511bis
Carlisle Adams <carlisle.adams@entrust.com> Thu, 01 May 2003 15:25 UTC
Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA16946 for <pkix-archive@lists.ietf.org>; Thu, 1 May 2003 11:25:24 -0400 (EDT)
Received: from above.proper.com (localhost [127.0.0.1]) by above.proper.com (8.12.8p1/8.12.8) with ESMTP id h41DsTi2061302 for <ietf-pkix-bks@above.proper.com>; Thu, 1 May 2003 06:54:29 -0700 (PDT) (envelope-from owner-ietf-pkix@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.8p1/8.12.9/Submit) id h41DsTtB061301 for ietf-pkix-bks; Thu, 1 May 2003 06:54:29 -0700 (PDT)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from sottmxssm.entrust.com (sottmxssm.entrust.com [216.191.252.10]) by above.proper.com (8.12.8p1/8.12.8) with ESMTP id h41DsQi2061295 for <ietf-pkix@imc.org>; Thu, 1 May 2003 06:54:28 -0700 (PDT) (envelope-from carlisle.adams@entrust.com)
Received: from sottguard01.entrust.com (sottguard01.entrust.com [10.4.61.249]) by sottmxssm.entrust.com (Switch-2.2.6/Switch-2.2.4) with SMTP id V41D2FK616482 for <ietf-pkix@imc.org>; Thu, 01 May 2003 09:51:21 -0400
Received: (qmail 21780 invoked by uid 64014); 1 May 2003 13:52:28 -0000
Received: from carlisle.adams@entrust.com by sottguard01.entrust.com with AmikaGuardian-Server-1.1.2 (Processed in 0.29983 secs); 01 May 2003 13:52:28 -0000
Received: from unknown (HELO SOTTMXS01.entrust.com) (10.4.61.7) by 10.4.61.249 with SMTP; 1 May 2003 13:52:28 -0000
Received: by sottmxs01.entrust.com with Internet Mail Service (5.5.2656.59) id <KCLZASKJ>; Thu, 1 May 2003 09:54:20 -0400
Message-ID: <BFB44293CE13C9419B7AFE7CBC35B93903731B15@sottmxs08.entrust.com>
From: Carlisle Adams <carlisle.adams@entrust.com>
To: 'Russ Housley' <housley@vigilsec.com>
Cc: ietf-pkix@imc.org
Subject: RE: draft-ietf-pkix-rfc2511bis
Date: Thu, 01 May 2003 09:54:18 -0400
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2656.59)
Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C30FE9.28FF4340"
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Hi Russ, In RFC 2511, the body of the spec (in Section 7, on page 11) says that {id-regInfo 1} is called "id-regInfo-asciiPairs" with a syntax of OCTET STRING, but the ASN.1 module (a few lines before the END statement, on page 23) says that this same OID is called "id-regInfo-utf8Pairs" with a syntax of UTF8String. The change made in rfc2511bis was to correct this error and align the text in the body of the spec with the ASN.1 module. Thus, both places now say that the {id-regInfo 1} OID is called "id-regInfo-utf8Pairs" with a syntax of UTF8String. There was no intent to change the semantics of an existing OID. Carlisle. -----Original Message----- From: Russ Housley [mailto:housley@vigilsec.com] Sent: Tuesday, April 29, 2003 9:54 AM To: ietf-pkix@imc.org Subject: draft-ietf-pkix-rfc2511bis I am concerned about the change that is illustrated below (please excuse the HTML). -- Registration Info in CRMF id-regInfo OBJECT IDENTIFIER ::= { id-pkip id-regInfo(2) } id-regInfo-asciiPairs id-regInfo-utf8Pairs OBJECT IDENTIFIER ::= { id-regInfo 1 } --with syntax OCTET STRING UTF8STRING id-regInfo-certReq OBJECT IDENTIFIER ::= { id-regInfo 2 } --with syntax CertRequest First, I am concerned about the change in the semantics associated with an OID that was assigned a long time ago. This could lead to interoperability issues. Why would we change the semantics of an existing OID instead of assigning a new OID. Second, this change does not show up in the ASN.1 module. Why are the OIDs not part of the ASN.1 module? Russ
- draft-ietf-pkix-rfc2511bis Russ Housley
- RE: draft-ietf-pkix-rfc2511bis Carlisle Adams
- RE: draft-ietf-pkix-rfc2511bis Russ Housley