[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: order of name attributes in certificates, suggestion for 3280 bis
David A. Cooper wrote:
> Michael Ströder wrote:
>
>> Especially RFC3280bis should have a normative reference to the DN string
>> representation used for the example DNs in appendix C which defines:
>> - order
>> - character set
>> - defined RDN separator
>> - multi-valued RDNs
>>
> I do not believe that 3280bis should include a normative reference to
> RFC 2253, although I don't see any problem including an informative
> reference.
Informative reference is ok for me too. Maybe a small hint that the
order in the string representation is reversed RDNSequence. I'm pretty
sure PKI implementors will not read RFC 2253, section 2.1 when looking
at 3280bis.
>> Semicolons as RDN separators like used in appendix C are today not
>> widely known to implementors and disallowed in LDAPv3 (see RFC 2253).
>>
> I can't find any place in 3280bis were semicolons are used as RDN
> separators.
Sorry, I still looked at RFC 3280. My fault.
Ciao, Michael.