Re: utilizing UR?s in PKI?
Jeff.Hodges@stanford.edu Tue, 11 November 1997 01:33 UTC
Return-Path: <hodges@Breakaway.Stanford.EDU>
Received: from consensus.com (mail.consensus.com [157.22.240.7]) by sparky.wovenword.com (8.8.5/8.8.5) with ESMTP id RAA00125 for <tim-mail-work-lists@wovenword.com>; Mon, 10 Nov 1997 17:33:50 -0800
Received: from Tandem.com (192.216.221.8) by consensus.com with ESMTP (Eudora Internet Mail Server 1.2); Mon, 10 Nov 1997 18:30:37 -0700
Received: from Breakaway.Stanford.EDU (breakaway.Stanford.EDU [36.53.0.203]) by Tandem.com (8.8.8/2.0.1) with ESMTP id QAA16996 for <ietf-pkix@tandem.com>; Mon, 10 Nov 1997 16:33:42 -0800 (PST)
Received: from localhost (hodges@localhost) by Breakaway.Stanford.EDU (8.8.5/8.8.5) with ESMTP id QAA10512 for <ietf-pkix@tandem.com>; Mon, 10 Nov 1997 16:33:41 -0800
Message-Id: <199711110033.QAA10512@Breakaway.Stanford.EDU>
X-Mailer: exmh version 1.6.9 8/22/96
Subject: Re: utilizing UR?s in PKI?
To: Public Key Infrastructure <ietf-pkix@tandem.com>
In-reply-to: Your message of Mon, 10 Nov 1997 09:07:31 -0500
Reply-to: ietf-pkix@tandem.com
From: Jeff.Hodges@stanford.edu
X-Office: Pine Hall Rm 161; +1-415-723-2452
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Date: Mon, 10 Nov 1997 16:33:41 -0800
Sender: hodges@Breakaway.Stanford.EDU
Status:
> I never thought about it. What advantages does URNs offer?
I'm not way up-to-speed on URNs either. Tho, here's what RFC1737 says about
URNs/URLs/URCs...
o The purpose or function of a URN is to provide a globally unique,
persistent identifier used for recognition, for access to
characteristics of the resource or for access to the resource
itself.
..which seems innaresting from the PKI perspective. Quotes from a couple of
their docs and abstracts of the current drafts are below.
Jeff
---------------
>From the intro to RFC1737...
This document specifies a minimum set of requirements for a kind of
Internet resource identifier known as Uniform Resource Names (URNs).
URNs fit within a larger Internet information architecture, which in
turn is composed of, additionally, Uniform Resource Characteristics
(URCs), and Uniform Resource Locators (URLs). URNs are used for
identification, URCs for including meta-information, and URLs for
locating or finding resources.
.
.
.
The requirements for Uniform Resource Names fit within the overall
architecture of Uniform Resource Identification. In order to build
applications in the most general case, the user must be able to
discover and identify the information, objects, or what we will call
in this architecture resources, on which the application is to
operate. Beyond this statement, the URI architecture does not define
"resource." As the network and interconnectivity grow, the ability
to make use of remote, perhaps independently managed, resources will
become more and more important. This activity of discovering and
utilizing resources can be broken down into those activities where
one of the primary constraints is human utility and facility and
those in which human involvement is small or nonexistent. Human
naming must have such characteristics as being both mnemonic and
short. Humans, in contrast with computers, are good at heuristic
disambiguation and wide variability in structure. In order for
computer and network based systems to support global naming and
access to resources that have perhaps an indeterminate lifetime, the
flexibility and attendant unreliability of human-friendly names
should be translated into a naming infrastructure more appropriate
for the underlying support system. It is this underlying support
system that the Internet Information Infrastructure Architecture
(IIIA) is addressing.
Within the IIIA, several sorts of information about resources are
specified and divided among different sorts of structures, along
functional lines. In order to access information, one must be able
to discover or identify the particular information desired,
determined both how and where it might be used or accessed. The
partitioning of the functionality in this architecture is into
uniform resource names (URN), uniform resource characteristics (URC),
and uniform resource locators (URL). A URN identifies a resource or
unit of information. It may identify, for example, intellectual
content, a particular presentation of intellectual content, or
whatever a name assignment authority determines is a distinctly
namable entity. A URL identifies the location or a container for an
instance of a resource identified by a URN. The resource identified
by a URN may reside in one or more locations at any given time, may
move, or may not be available at all. Of course, not all resources
will move during their lifetimes, and not all resources, although
identifiable and identified by a URN will be instantiated at any
given time. As such a URL is identifying a place where a resource
may reside, or a container, as distinct from the resource itself
identified by the URN. A URC is a set of meta-level information
about a resource. Some examples of such meta-information are: owner,
encoding, access restrictions (perhaps for particular instances),
cost.
With this in mind, we can make the following statement:
o The purpose or function of a URN is to provide a globally unique,
persistent identifier used for recognition, for access to
characteristics of the resource or for access to the resource
itself.
More specifically, there are two kinds of requirements on URNs:
requirements on the functional capabilities of URNs, and requirements
on the way URNs are encoded in data streams and written
communications.
>From draft-ietf-urn-syntax-05.txt....
Abstract
Uniform Resource Names (URNs) are intended to serve as persistent,
location-independent, resource identifiers. This document sets
forward the canonical syntax for URNs. A discussion of both existing
legacy and new namespaces and requirements for URN presentation and
transmission are presented. Finally, there is a discussion of URN
equivalence and how to determine it.
-------------------------------------------------
URN draft abstracts...
http://info.internet.isi.edu:80/R820419-825216-1m/in-drafts/id-abstracts.html
Uniform Resource Names (urn)
"Architectural Principles of Uniform Resource Name Resolution", K. Sollins,
09/26/1997, <draft-ietf-urn-req-frame-04.txt>
This document addresses the issues of the discovery of URN (Uniform
Resource Name) resolver services that in turn will directly translate URNs into
URLs (Uniform Resource Locators) and URCs (Uniform Resource
Characteristics). The document falls into three major parts, the assumptions
underlying the work, the guidelines in order to be a viable Resolver Discovery
Service or RDS, and a framework for designing RDSs. The guidelines fall into
three principle areas: evolvability, usability, and security and privacy. An RDS
that is compliant with the framework will not necessarily be compliant with the
guidelines. Compliance with the guidelines will need to be validated separately.
"Namespace Identifier Requirements for URN Services", Patrik Faltstrom, R.
Iannella, 03/27/1997, <draft-ietf-urn-nid-req-01.txt>
Services that offer to resolve Uniform Resource Names implicitly require that
they support a persistent and reliable service for an indeterminate length of
time. This draft outlines the requirements for any such service that wishes to
participate as a Namespace Identifier.
"URI Resolution Services Necessary for URN Resolution", M. Mealling, R. Daniel,
08/09/1997, <draft-ietf-urn-resolution-services-03.txt>
Retrieving the resource identified by a Uniform Resource Identifier (URI) [3] is
only one of the operations that can be performed on a URI. One might also ask
for and get a list of other identifiers that are aliases for the original URI or a
bibliographic description of the resource the URI denotes, for example. This
applies to both Uniform Resource Names (URNs) and Uniform Resource
Locators (URLs). Uniform Resource Characteristics (URCs) are discussed in
this document but only as descriptions of resources rather than identifiers.
A service in the network providing access to a resource may provide one or
some of these options, but it need not provide all of them. This memo specifies
an initial set of these functions, to be used to describe the functions provided by
any given access service and the requirements that must be met when those
operations are encoded in a protocol.
"Using Existing Bibliographic Identifiers as Uniform Resource Names", C.
Lynch, C. Preston, R. Daniel, 09/26/1997, <draft-ietf-urn-biblio-02.txt>
A system for Uniform Resource Names (URNs) must be capable of supporting
identifiers from existing widely-used naming systems. This document
discusses how three major bibliographic identifiers (the ISBN, ISSN and SICI)
can be supported within the URN framework and the currently proposed
syntax for URNs.
"URN Syntax", R. Moats, 05/05/1997, <draft-ietf-urn-syntax-05.txt>
Uniform Resource Names (URNs) are intended to serve as persistent,
location-independent, resource identifiers. This document sets forward the
canonical syntax for URNs. A discussion of both existing legacy and new
namespaces and requirements for URN presentation and transmission are
presented. Finally, there is a discussion of URN equivalence and how to
determine it.
"A URN Namespace for IETF Documents", R. Moats, 07/14/1997,
<draft-ietf-urn-ietf-02.txt>
A system for Uniform Resource Names (URNs) must be capable of supporting
new naming systems. As an example of how a new namespace may be
proposed, this document presents a naming system based on the RFC family of
documents (RFCs, STDs, and FYIs) developed by the IETF and published by
the RFC editor and the minutes of working groups (WG) and birds of a feather
(BOF) meetings that occur during IETF conferences. This namespace can be
supported within the URN framework and the currently proposed syntax for
URNs.
- Re: utilizing UR?s in PKI? Jeff.Hodges
- Re: utilizing UR?s in PKI? Russ Housley
- utilizing UR?s in PKI? Jeff.Hodges