IETF Logo Mail Archive

Re: PI: 10: draft-ietf-pkix-pi-10.txt - single serialNumber attribute

Richard Levitte - VMS Whacker <levitte@lp.se> Mon, 26 July 2004 11:25 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA15325 for <pkix-archive@lists.ietf.org>; Mon, 26 Jul 2004 07:25:39 -0400 (EDT)
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.9) with ESMTP id i6QAhRSS019974; Mon, 26 Jul 2004 03:43:27 -0700 (PDT) (envelope-from owner-ietf-pkix@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id i6QAhRkp019973; Mon, 26 Jul 2004 03:43:27 -0700 (PDT)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from nic.lp.se (nic.lp.se [213.212.3.208]) by above.proper.com (8.12.11/8.12.9) with ESMTP id i6QAhPYA019930 for <ietf-pkix@imc.org>; Mon, 26 Jul 2004 03:43:26 -0700 (PDT) (envelope-from levitte@lp.se)
Received: from localhost (127.0.0.1) by nic.lp.se (MX V5.3 VnHj) with ESMTP; Mon, 26 Jul 2004 12:18:12 +0200
Date: Mon, 26 Jul 2004 12:42:53 +0200
Message-ID: <20040726.124253.63510941.levitte@lp.se>
To: Denis.Pinkas@bull.net
CC: James.H.Manger@team.telstra.com, ietf-pkix@imc.org
Subject: Re: PI: 10: draft-ietf-pkix-pi-10.txt - single serialNumber attribute
From: Richard Levitte - VMS Whacker <levitte@lp.se>
In-Reply-To: <4104CE92.9020903@bull.net>
References: <73388857A695D31197EF00508B08F29806EE1B50@ntmsg0131.corpmail.telstra.com.au> <4104CE92.9020903@bull.net>
X-URL: http://www.lp.se/
X-Waved: dead chicken, GNU emacs 21.3.1, Mew version 4.0.65
X-Mew: See http://www.mew.org/
X-Mailer: Mew version 4.0.65 on Emacs 21.3 / Mule 5.0 (SAKAKI)
MIME-Version: 1.0
Content-Type: Text/Plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Content-Transfer-Encoding: 7bit

Hey guys,

I've lurked for a while, and have perhaps not entirely followed, so I
appologise in advance for jumping in like this.

I'm curious about the following:

In message <4104CE92.9020903@bull.net> on Mon, 26 Jul 2004 11:27:46 +0200, Denis Pinkas <Denis.Pinkas@bull.net> said:

Denis.Pinkas> > Thanks David.
Denis.Pinkas> > 
Denis.Pinkas> >>cn="John Doe" , o="Acme Ltd" serialNumber="DUNS554433", c=US
Denis.Pinkas> 
Denis.Pinkas> I would propose instead to re-use my text, modified by
Denis.Pinkas> David, with an additional modification for the item 2.
Denis.Pinkas> This leads to:
Denis.Pinkas> 
Denis.Pinkas> 1 - if there are one or more RDNs containing a
Denis.Pinkas>      serialNumber attribute (alone or accompanied by
Denis.Pinkas>      other attributes), then the value contained in the
Denis.Pinkas>      serialNumber of the deepest such RDN SHALL be used
Denis.Pinkas>      as the identifierValue. 

What would that mean for a DN like the one quoted above?  Does it mean
that John Doe would get serialNumber="DUNS554433" as PI by default?
What would then happen if J. Random Luser also gets a DN from Acme Ltd,
like this:

  cn="J. Random Luser", o="Acme Ltd" serialNumber="DUNS554422", c=US

Does that mean that J. Random Luser also would get
serialNumber="DUNS554433" as PI by default?

If that's what you mean, then it doesn't feel sane to me.

-----
Please consider sponsoring my work on free software.
See http://www.free.lp.se/sponsoring.html for details.

-- 
Richard Levitte     | http://richard.levitte.org/ | Tunnlandsv. 52
Levitte Programming | http://www.lp.se/           | S-168 36 Bromma
T: +46-708-26 53 44 |                             | SWEDEN
     "Price, performance, quality...  choose the two you like"

v2.23.0 | Report a Bug | By Email