Protocol Action: An Internet Attribute Certificate Profile for Authorization to Proposed Standard
The IESG <iesg-secretary@ietf.org> Fri, 20 July 2001 15:29 UTC
Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with SMTP id LAA03085 for <pkix-archive@odin.ietf.org>; Fri, 20 Jul 2001 11:29:51 -0400 (EDT)
Received: by above.proper.com (8.11.3/8.11.3) id f6KEQeB29986 for ietf-pkix-bks; Fri, 20 Jul 2001 07:26:40 -0700 (PDT)
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by above.proper.com (8.11.3/8.11.3) with ESMTP id f6KEQcq29982 for <ietf-pkix@imc.org>; Fri, 20 Jul 2001 07:26:38 -0700 (PDT)
Received: from CNRI.Reston.VA.US (localhost [127.0.0.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA17963; Fri, 20 Jul 2001 10:25:20 -0400 (EDT)
Message-Id: <200107201425.KAA17963@ietf.org>
To: IETF-Announce:;
Cc: RFC Editor <rfc-editor@isi.edu>, IANA <iana@iana.org>
Cc: Internet Architecture Board <iab@isi.edu>
Cc: ietf-pkix@imc.org
From: The IESG <iesg-secretary@ietf.org>
Subject: Protocol Action: An Internet Attribute Certificate Profile for Authorization to Proposed Standard
Date: Fri, 20 Jul 2001 10:25:20 -0400
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
List-ID: <ietf-pkix.imc.org>
The IESG has approved An Internet Attribute Certificate Profile for Authorization <draft-ietf-pkix-ac509prof-09.txt> as a Proposed Standard. This document is the product of the Public-Key Infrastructure (X.509) Working Group. The IESG contact persons are Jeffrey Schiller and Marcus Leech. Technical Summary This document provides a profile for X.509 Attribute Certificates. Traditionally when we think of X.509 Certificates we envision a certificate that associate a public key with a name. However attribute certificates associate a name, not with a public key, but with a set of attributes. Attributes might be used for authorization and generic business purposes. Whereas a binding between a key and a name (which is provided for in a "normal" certificate) may last for a long time, attributes may be associated with a name for a short (or long) time. A person may also have several different attribute certificates, each for an appropriate process or situation. Working Group Summary The working group came to consensus on this document. Protocol Quality These documents were reviewed by Jeffrey I. Schiller for the IESG.