IETF Logo Mail Archive

Re: [pkix] [x500standard] Re: Unclear public-key certificate definition in X.509

"Erik Andersen" <era@x500.eu> Thu, 01 December 2011 16:21 UTC

Return-Path: <era@x500.eu>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BB7B11E826A for <pkix@ietfa.amsl.com>; Thu, 1 Dec 2011 08:21:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.939
X-Spam-Level:
X-Spam-Status: No, score=-0.939 tagged_above=-999 required=5 tests=[AWL=0.650, BAYES_00=-2.599, HELO_EQ_DK=1.009, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YS7JylKrKbd6 for <pkix@ietfa.amsl.com>; Thu, 1 Dec 2011 08:21:28 -0800 (PST)
Received: from mail02.dandomain.dk (mail02.dandomain.dk [194.150.112.202]) by ietfa.amsl.com (Postfix) with ESMTP id 871E111E822D for <pkix@ietf.org>; Thu, 1 Dec 2011 08:21:04 -0800 (PST)
Received: from Morten ([94.191.225.117]) by mail02.dandomain.dk (DanDomain Mailserver) with ASMTP id KCW82102; Thu, 01 Dec 2011 17:21:02 +0100
From: Erik Andersen <era@x500.eu>
To: x500standard@freelists.org
References: <002101cb7b73$be195da0$3a4c18e0$@eu> <gvn5t9aqedn57jl6ugjezwJv4X.penango@mail.gmail.com> <006d01ccb039$50ff39f0$f2fdadd0$@eu> <OF1B598BCC.D21073D9-ONC1257959.00534404-C1257959.00576DF9@bull.net>
In-Reply-To: <OF1B598BCC.D21073D9-ONC1257959.00534404-C1257959.00576DF9@bull.net>
Date: Thu, 01 Dec 2011 17:20:59 +0100
Message-ID: <007401ccb045$38f4a190$aadde4b0$@eu>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_0075_01CCB04D.9AB90990"
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AcywQaCPuO7SV2AcTIK1GgARvkLyEAAAPwjw
Content-Language: da
Cc: 'PKIX' <pkix@ietf.org>, pkix-bounces@ietf.org, 'SG17-Q11' <t09sg17q11@lists.itu.int>
Subject: Re: [pkix] [x500standard] Re: Unclear public-key certificate definition in X.509
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pkix>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Dec 2011 16:21:30 -0000

Hi Denis

Thanks for your comments. 

 

There has been several suggestions to remove the concept of alternative
distinguished name (name with context). I have produced a proposal for the
necessary text changes to remove that concept. I have for a long time been
aware that alterative distinguished names do fit well into the X.509
concepts.

 

The note, to which you are referring, should just be deleted. 

 

Erik Andersen

Andersen's L-Service

Elsevej 48,

DK-3500 Vaerloese

Denmark

Mobile: +45 2097 1490

e-amail: era@x500.eu

Skype: andersen-erik

 <http://www.x500.eu/> http://www.x500.eu/

 <http://www.x500standard.com/> http://www.x500standard.com/

 <http://dk.linkedin.com/in/andersenerik>
http://dk.linkedin.com/in/andersenerik

 

Fra: x500standard-bounce@freelists.org
[mailto:x500standard-bounce@freelists.org] På vegne af denis.pinkas@bull.net
Sendt: 1. december 2011 16:55
Til: Erik Andersen
Cc: 'PKIX'; pkix-bounces@ietf.org; SG17-Q11; Directory list
Emne: [x500standard] Re: [pkix] Unclear public-key certificate definition in
X.509

 

Erik and Kyle, 

Erik, you said: 

" I am completely aware that X.509 has a life outside directory, (...) 
as to distinguished name, it seems too late to change that ". 

It is never too late. 

X.509 does not define what a DN is. 

ITU-T Rec. X.501 (11/2008), alias  ISO/IEC 9594-2:2008, defines it only in
the context of a DIT 

9.1.3 distinguished name (of an entry): Every object entry, alias entry, and
subentry has at least one distinguished name. 
If any RDN for the entry or any superior entry includes an attribute for
which there exist multiple distinguished 
values differentiated by context (as described in 9.3), then the entry shall
have multiple distinguished names 
differentiated by context. The  primary distinguished name is that
distinguished name in which each RDN has the 
primary distinguished value of each contributing attribute as the main value
in the RDN construct. 

Furthermore, X.509 includes inappropriate sentences like: 
"Although the CAs are unambiguously defined by a distinguished name in the
DIT, .." 

It is the time to allow the existence of X.509 without using a Directory. 

----------------------------------------------------------------------------
----------------------------------------------------------------------------
- 
Kyle, you said: : 

"Unfortunately, the original designers appear to have not thought about what
would happen if you had a DN collision with multiple certificates and keys".


I would rather say: "The original designers appear to have not given
sufficient information about what
would happen if you had a DN collision". 

The reality as that a DN name is only unique for the CA which has issued it.

This statement is valid for the next upper the CA, and until a root CA is
reached. 
This means that only the sequence of DN is unique for a given trust anchor. 

In order to avoid any name collision when DN are used for access control
purposes, in the most general case
the structure of name placed in an ACL should start with a trust anchor and
be followed by a sequence of DNs. 

When  there is a single trust anchor, the first element may be omitted, 
... but only as long as there is not a second trust anchor later on. 

When there is a single certification path under that single trust anchor,
the intermediate DNs of the CAs may be omitted, 
... but only as long as there is not a second certification path below that
trust anchor. 

This guidance is not given anywhere. 

Denis 

============================================================================
============= 
Hi Kyle,

This is an important discussion.

I am completely aware that X.509 has a life outside directory, although
directories, especially LDAP systems, are often used for holding the
different PKI components. In my effort to modernize X.509, I am trying to
remove references to directory where it is not necessary. The main directory
content is the schema information (attribute types, object classes and
matching rules) for holding and accessing PKI/PMI components.

As to distinguished name, it seems too late to change that. It is part of
many profiles and also of RFC 5280.

I do not believe that it would be wise to separate the content of X.509 into
two different documents. X.509 is well established and well known. Putting
the non-directory stuff into a separate document will cause confusion and
many references will have to changed.

(ASN.1 was never part of X.500, but of X.400 (1984), and it was separated
quite early.)

Erik Andersen
Andersen's L-Service
Elsevej 48,
DK-3500 Vaerloese
Denmark
Mobile: +45 2097 1490
e-amail: era@x500.eu
Skype: andersen-erik
 <http://www.x500.eu/> http://www.x500.eu/
 <http://www.x500standard.com/> http://www.x500standard.com/
 <http://dk.linkedin.com/in/andersenerik>
http://dk.linkedin.com/in/andersenerik

-----Oprindelig meddelelse-----
Fra: Kyle Hamilton [ <mailto:aerowolf@gmail.com> mailto:aerowolf@gmail.com] 
Sendt: 1. december 2011 03:43
Til: Tom Gindin
Cc: Erik Andersen; PKIX
Emne: Re: [pkix] Unclear public-key certificate definition in X.509



On Fri, Nov 12, 2010 at 4:38 PM, Tom Gindin <tgindin@us.ibm.com> wrote: 

>        It no longer has the problem which it had before.  Of course, it's
> a little odd to describe a certificate as a function of specifically the
> DN of the issuer, since the critical functional dependency is on the
> issuer's key pair.

The original X.509 use-case was that the Directory was everything, that
everything could be Distinguishably Named, and that the Distinguished Name
was the correct indexing system.  The problem is that the original designers
hadn't had the experience of a decade of nearly universal worldwide
deployment, with the format being extended into realms it was never intended
to go.

Perhaps X.509 could be formally decoupled from X.500, or (much like ASN.1)
the data format and semantics could be moved to a different standard while
the DIT bindings remain in X.509.

> The CA(A) expression just confuses me, because it suggests that the CA is
> a function of the subject name.

Unfortunately, the original designers appear to have not thought about what
would happen if you had a DN collision with multiple certificates and keys.

The key to the lock is unique, which means that it also meets the
requirement to be a database key.  The key is the key; the binding and all
the rest is just metadata.

-Kyle H

v2.46.0 | Report a Bug | By Email | System Status