[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: storing certificates "as is"

To: David Chadwick <d.w.chadwick@salford.ac.uk>, ietf-ldapbis@OpenLDAP.org
Subject: RE: storing certificates "as is"
From: "Ramsay, Ron" <Ron.Ramsay@ca.com>
Date: Thu, 13 Dec 2001 11:47:37 +1100

There is no such statement in X.500 and it would therefore seem
inappropriate that LDAP should have one.

Ron.

-----Original Message-----
From: David Chadwick [mailto:d.w.chadwick@salford.ac.uk]
Sent: Thursday, 13 December 2001 9:27
To: ietf-ldapbis@OpenLDAP.org
Subject: storing certificates "as is"

Does anyone know where there is text that states that a server must
return exactly the same information (attribute value) that was presented
to it, either always or when the ;binary encoding is used. This is
obviously essential for all signed values eg certificates, CRLs etc.
Before I add this text into every schema definition for signed objects,
it would be nice to know that a LDAPv3 bis document already contained
text along these lines as a general statement, rather than making it
specific to signed attribute values

thanks

David

-- 
*****************************************************************

David W. Chadwick, BSc PhD
Professor of Information Systems Security
IS Institute, University of Salford, Salford M5 4WT
Tel: +44 161 295 5351  Fax +44 161 745 8169
Mobile: +44 77 96 44 7184
Email: D.W.Chadwick@salford.ac.uk
Home Page:  http://www.salford.ac.uk/its024/chadwick.htm
Research Projects: http://sec.isi.salford.ac.uk
Understanding X.500:  http://www.salford.ac.uk/its024/X500.htm
X.500/LDAP Seminars: http://www.salford.ac.uk/its024/seminars.htm
Entrust key validation string: MLJ9-DU5T-HV8J
PGP Key ID is 0xBC238DE5

*****************************************************************

Prev by Date: storing certificates "as is"
Next by Date: Re: storing certificates "as is"
Index(es):
- Chronological
- Thread