[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: X.509 attribute types missing EQUALITY rules in RFC 2256

To: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Re: X.509 attribute types missing EQUALITY rules in RFC 2256
From: Kathy Dally <kdally@mitre.org>
Date: Thu, 19 Apr 2001 15:59:08 -0400
Cc: ietf-ldapbis@OpenLDAP.org
Organization: The MITRE Corporation
References: <5.1.0.14.0.20010418233550.00a8b8e0@127.0.0.1>

Hi Kurt!

This proposal works for me.  Should it be noted that servers may support
the matching rules, such as certificateExactMatch, that are part of the
X.500 definition and clients may apply those matching rules using
filters?

Thanks,
Kathy


"Kurt D. Zeilenga" wrote:
> 
> In regards to userCertificate and other certificate-related
> attribute types, I note that the LDAP descriptions are not
> consistent with the X.509 descriptions as the EQUALITY
> matching rules, namely certificateExactMatch, are missing.
> 
> While we cannot add new matching rules (or other "new features")
> to the specification as these would be "new features", we can
> and probably should note these schema elements:
>         1) differ from their X.509 descriptions and
>         2) may be updated by a future specification to include
>            appropriate matching rules.
> 
> Kurt

References:
- X.509 attribute types missing EQUALITY rules in RFC 2256
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: 'dc' and 'uid' in User Schema
Next by Date: RE: Refering to X.500 editions
Index(es):
- Chronological
- Thread