[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Stray Poll: SerialNumber definition

To: "EL-SIGN@xxxxxxxxxxxx" <EL-SIGN@xxxxxxxxxxxx>, "ietf-pkix@xxxxxxx" <ietf-pkix@xxxxxxx>, "'Stefan Santesson'" <stefan@xxxxxxxxxxx>
Subject: RE: Stray Poll: SerialNumber definition
From: Anders Rundgren <anders.rundgren@xxxxxxxxxx>
Date: Fri, 18 Feb 2000 17:23:02 +0100

Stefan,

 >This is all wrong.

>Section 3.2.5.1 gives you all the tools you need to explicitly define the
>nature of the content in the serialNumber attribute.

OK, where can I find the list of defined OIDs expressing how to interpret serialNumber
in the really impressing number of ways you provide in your posting?

Because, if a CA have to define these by itself and communicate this to all potential
RPs it is really the CA that is setting the standard.  I don't buy into that.

Another problem is that the absence of a clear default-interpretation of serialNumber
semantics.

Nice list though!

/Anders

>And you can do more than just identify that the information is unique per
>user, you can also identify in what manner the information is unique (World
>wide unique, unique per certificate in the issuers domain, unique per
>subject in the issuers domain, unique per subject in the specified country
>etc).

>You can even define exactly the nature of the content (Swedish civic
>registration code, Utah drivers license number, etc...)

>And more to it, you can name the registration authority (Swedish tax
>authority, Utah drivers license registry, etc...)

>All of this you already have in QC 03, what else do you need ?


>/Stefan

Follow-Ups:
- RE: Stray Poll: SerialNumber definition
  - From: Stefan Santesson

Prev by Date: Re: Stray Poll: SerialNumber definition
Next by Date: RE: Stray Poll: SerialNumber definition
Previous by thread: Re: Stray Poll: SerialNumber definition
Next by thread: RE: Stray Poll: SerialNumber definition
Index(es):
- Date
- Thread