IETF Logo Mail Archive

Re: draft-ietf-pkix-pi-10.txt - single serialNumber attribute

"Anders Rundgren" <anders.rundgren@telia.com> Mon, 19 July 2004 10:43 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id GAA03198 for <pkix-archive@lists.ietf.org>; Mon, 19 Jul 2004 06:43:42 -0400 (EDT)
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.9) with ESMTP id i6J9tCfV009368; Mon, 19 Jul 2004 02:55:12 -0700 (PDT) (envelope-from owner-ietf-pkix@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id i6J9tC8R009367; Mon, 19 Jul 2004 02:55:12 -0700 (PDT)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-pkix@mail.imc.org using -f
Received: from av1-2-sn3.vrr.skanova.net (av1-2-sn3.vrr.skanova.net [81.228.9.106]) by above.proper.com (8.12.11/8.12.9) with ESMTP id i6J9tCiB009319 for <ietf-pkix@imc.org>; Mon, 19 Jul 2004 02:55:12 -0700 (PDT) (envelope-from anders.rundgren@telia.com)
Received: by av1-2-sn3.vrr.skanova.net (Postfix, from userid 502) id 6D2C837EC5; Mon, 19 Jul 2004 11:55:07 +0200 (CEST)
Received: from smtp1-1-sn3.vrr.skanova.net (smtp1-1-sn3.vrr.skanova.net [81.228.9.177]) by av1-2-sn3.vrr.skanova.net (Postfix) with ESMTP id 5FD6337E43; Mon, 19 Jul 2004 11:55:07 +0200 (CEST)
Received: from arport (t10o913p74.telia.com [213.64.27.194]) by smtp1-1-sn3.vrr.skanova.net (Postfix) with SMTP id 4209438005; Mon, 19 Jul 2004 11:55:05 +0200 (CEST)
Message-ID: <004001c46d76$11c554d0$0500a8c0@arport>
From: Anders Rundgren <anders.rundgren@telia.com>
To: "Manger, James H" <James.H.Manger@team.telstra.com>, ietf-pkix@imc.org
References: <73388857A695D31197EF00508B08F29806EE1B42@ntmsg0131.corpmail.telstra.com.au>
Subject: Re: draft-ietf-pkix-pi-10.txt - single serialNumber attribute
Date: Mon, 19 Jul 2004 11:52:12 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1106
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106
Sender: owner-ietf-pkix@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-ID: <ietf-pkix.imc.org>
List-Unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Content-Transfer-Encoding: 7bit

>Requiring that there only be a single serialNumber attribute, however,
>is unnecessarily restrictive.  It seems quite sensible to use serialNumber
>attributes to hold company numbers, org unit ids and/or personal identifiers. 
>For example: cn="John Doe" serialNumber=12345, o="Acme Ltd" 
>serialNumber="DUNS 554433", c=US.  The PI extension would refer to 12345.

I believe examples like this are very good in order to achieve some
genuine understanding (beyond ASN.1).

But is this not actually a prime example of a scheme using TWO PIs?

This would however also require an updated specification where
something like an optional "instanceNumber" would be featured to
point out the actual serialNumber to use.

Anders

v2.23.0 | Report a Bug | By Email