[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: LDAP Certificate transfer syntax

To: Mark Wahl <Mark.Wahl@sun.com>
Subject: RE: LDAP Certificate transfer syntax
From: "Ramsay, Ron" <Ron.Ramsay@ca.com>
Date: Thu, 4 Apr 2002 11:02:37 +1000
Cc: LDAP BIS <ietf-ldapbis@OpenLDAP.org>, PKIX <ietf-pkix@imc.org>

I thought certificate syntax was being removed from the LDAP v3 specs and,
therefore, certificate syntax was not an issue for DLAPbis?

Ron.

-----Original Message-----
From: Mark Wahl [mailto:Mark.Wahl@sun.com]
Sent: Thursday, 4 April 2002 5:51
To: David Chadwick
Cc: Kurt D. Zeilenga; Mark C Smith; LDAP BIS; PKIX; mark.wahl@sun.com
Subject: Re: LDAP Certificate transfer syntax

David Chadwick wrote:
> 
> 
> Now to the backwards compatibility issues. In the table below the only
> problem will come with a new LDAPv3 client that does not use ;binary
> with an existing v3 server that demands it. But we already have an
> inconsistency in these current LDAPv3 servers in that they accept LDAPv2
> queries without ;binary but not LDAPv3 queries without ;binary. 

I do not think LDAPv2-LDAPv3 behavior is sufficient justification to cause 
incompatibility between two LDAPv3 implementations.

Maybe an "LDAPv4" should have a different way for clients to send  
certificate, but LDAPv2 compatibility should not be a concern that causes
this significant a change inside of the LDAPv3 specs.  That is out of scope 
for LDAPBIS.

Mark Wahl
Sun Microsystems Inc.

Follow-Ups:
- LDAPbis scope issue (Was: LDAP Certificate transfer syntax)
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: LDAP Certificate transfer syntax
Next by Date: Re: LDAP Certificate transfer syntax
Index(es):
- Chronological
- Thread