Re: [pkix] Question about RFC 3125
Denis <denis.ietf@free.fr> Tue, 12 November 2019 16:02 UTC
Return-Path: <denis.ietf@free.fr>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C72012009C for <pkix@ietfa.amsl.com>; Tue, 12 Nov 2019 08:02:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.895
X-Spam-Level:
X-Spam-Status: No, score=-1.895 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dXSlGPC73XAf for <pkix@ietfa.amsl.com>; Tue, 12 Nov 2019 08:02:36 -0800 (PST)
Received: from smtp.smtpout.orange.fr (smtp01.smtpout.orange.fr [80.12.242.123]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 45AEC12006F for <pkix@ietf.org>; Tue, 12 Nov 2019 08:02:36 -0800 (PST)
Received: from [192.168.1.11] ([90.79.49.31]) by mwinf5d48 with ME id R42X2100Z0gNo7u0342XAn; Tue, 12 Nov 2019 17:02:34 +0100
X-ME-Helo: [192.168.1.11]
X-ME-Auth: ZGVuaXMucGlua2FzQG9yYW5nZS5mcg==
X-ME-Date: Tue, 12 Nov 2019 17:02:34 +0100
X-ME-IP: 90.79.49.31
To: pkix@ietf.org
References: <86666A58-1AAA-4CEA-AADC-BDBCDFDD6519@vigilsec.com>
From: Denis <denis.ietf@free.fr>
Message-ID: <d262376e-e257-884d-a85e-354ea31439ed@free.fr>
Date: Tue, 12 Nov 2019 17:02:31 +0100
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.9.0
MIME-Version: 1.0
In-Reply-To: <86666A58-1AAA-4CEA-AADC-BDBCDFDD6519@vigilsec.com>
Content-Type: multipart/alternative; boundary="------------025D53A0DAEC1E136D218130"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/pkix/7gVsxP70GkCBjO4epIwYNF7dAog>
Subject: Re: [pkix] Question about RFC 3125
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pkix/>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Nov 2019 16:02:40 -0000
Hello Russ,
I wonder why you have an interest, today, in a document that was written
... 18 years ago.
FYI, ETSI TC ESI sent for a public review until the August 31, 2019 a
document about signature policies:
* draft TS 119 172-2: Signature Policies; Part 2: XML format for
signature policies, and
* draft TS 119 172-3: Signature Policies; Part 3: ASN.1 format for
signature policies
These documents are still downloadable from:
http://docbox.etsi.org/ESI/Open/Latest_Drafts/
More specifically from :
* https://docbox.etsi.org/ESI/Open/Latest_Drafts/ESI-0019172-2v003-public.pdf
and
* https://docbox.etsi.org/ESI/Open/Latest_Drafts/ESI-0019172-3v003-public.pdf
I prepared and sent 43 comments on Part 2 only, since IMO, it was not
necessary anymore to define a signature policy using ASN.1.
Now, to answer your question, the intent in RFC 3125 was to have an OID,
in order to have an unambiguous meaning, whatever the local language
of the signer and of the verifier would be.
Denis
> Section 3.4 of RFC 3125 talks about Commitment Rules, and it specifies the following structure:
>
> CommitmentType ::= SEQUENCE {
> identifier CommitmentTypeIdentifier,
> fieldOfApplication [0] FieldOfApplication OPTIONAL,
> semantics [1] DirectoryString OPTIONAL }
>
> However, CommitmentTypeIdentifier is never defined. Is it an object identifier?
>
> Can anyone point to a public signature policy that uses the SignaturePolicy defined in RFC 3125?
>
> Russ
>
> _______________________________________________
> pkix mailing list
> pkix@ietf.org
> https://www.ietf.org/mailman/listinfo/pkix
- [pkix] Question about RFC 3125 Russ Housley
- Re: [pkix] Question about RFC 3125 Denis
- Re: [pkix] Question about RFC 3125 Sean Turner
- Re: [pkix] Question about RFC 3125 Stefan Santesson
- Re: [pkix] Question about RFC 3125 Russ Housley