RE: draft-ietf-pkix-rfc2511bis
Carlisle Adams <carlisle.adams@entrust.com> Thu, 01 May 2003 15:25 UTC
Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA16946 for <pkix-archive@lists.ietf.org>; Thu, 1 May 2003 11:25:24 -0400 (EDT)
Received: from above.proper.com (localhost [127.0.0.1]) by above.proper.com (8.12.8p1/8.12.8) with ESMTP id h41DsTi2061302 for <ietf-pkix-bks@above.proper.com>; Thu, 1 May 2003 06:54:29 -0700 (PDT) (envelope-from owner-ietf-pkix@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.8p1/8.12.9/Submit) id h41DsTtB061301 for ietf-pkix-bks; Thu, 1 May 2003 06:54:29 -0700 (PDT)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from sottmxssm.entrust.com (sottmxssm.entrust.com [216.191.252.10]) by above.proper.com (8.12.8p1/8.12.8) with ESMTP id h41DsQi2061295 for <ietf-pkix@imc.org>; Thu, 1 May 2003 06:54:28 -0700 (PDT) (envelope-from carlisle.adams@entrust.com)
Received: from sottguard01.entrust.com (sottguard01.entrust.com [10.4.61.249]) by sottmxssm.entrust.com (Switch-2.2.6/Switch-2.2.4) with SMTP id V41D2FK616482 for <ietf-pkix@imc.org>; Thu, 01 May 2003 09:51:21 -0400
Received: (qmail 21780 invoked by uid 64014); 1 May 2003 13:52:28 -0000
Received: from carlisle.adams@entrust.com by sottguard01.entrust.com with AmikaGuardian-Server-1.1.2 (Processed in 0.29983 secs); 01 May 2003 13:52:28 -0000
Received: from unknown (HELO SOTTMXS01.entrust.com) (10.4.61.7) by 10.4.61.249 with SMTP; 1 May 2003 13:52:28 -0000
Received: by sottmxs01.entrust.com with Internet Mail Service (5.5.2656.59) id <KCLZASKJ>; Thu, 1 May 2003 09:54:20 -0400
Message-ID: <BFB44293CE13C9419B7AFE7CBC35B93903731B15@sottmxs08.entrust.com>
From: Carlisle Adams <carlisle.adams@entrust.com>
To: 'Russ Housley' <housley@vigilsec.com>
Cc: ietf-pkix@imc.org
Subject: RE: draft-ietf-pkix-rfc2511bis
Date: Thu, 01 May 2003 09:54:18 -0400
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2656.59)
Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C30FE9.28FF4340"
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Hi Russ,
In RFC 2511, the body of the spec (in Section 7, on page 11) says that
{id-regInfo 1} is called "id-regInfo-asciiPairs" with a syntax of OCTET
STRING, but the ASN.1 module (a few lines before the END statement, on page
23) says that this same OID is called "id-regInfo-utf8Pairs" with a syntax
of UTF8String.
The change made in rfc2511bis was to correct this error and align the text
in the body of the spec with the ASN.1 module. Thus, both places now say
that the {id-regInfo 1} OID is called "id-regInfo-utf8Pairs" with a syntax
of UTF8String. There was no intent to change the semantics of an existing
OID.
Carlisle.
-----Original Message-----
From: Russ Housley [mailto:housley@vigilsec.com]
Sent: Tuesday, April 29, 2003 9:54 AM
To: ietf-pkix@imc.org
Subject: draft-ietf-pkix-rfc2511bis
I am concerned about the change that is illustrated below (please excuse the
HTML).
-- Registration Info in CRMF
id-regInfo OBJECT
IDENTIFIER ::= { id-pkip id-regInfo(2) }
id-regInfo-asciiPairs
id-regInfo-utf8Pairs
OBJECT IDENTIFIER ::= { id-regInfo 1 }
--with syntax
OCTET STRING
UTF8STRING
id-regInfo-certReq OBJECT IDENTIFIER ::= { id-regInfo 2 }
--with syntax CertRequest
First, I am concerned about the change in the semantics associated with an
OID that was assigned a long time ago. This could lead to interoperability
issues. Why would we change the semantics of an existing OID instead of
assigning a new OID.
Second, this change does not show up in the ASN.1 module. Why are the OIDs
not part of the ASN.1 module?
Russ
- draft-ietf-pkix-rfc2511bis Russ Housley
- RE: draft-ietf-pkix-rfc2511bis Carlisle Adams
- RE: draft-ietf-pkix-rfc2511bis Russ Housley