[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Attribute Certificate Policy??
Russ, Chris and all,
> I am not aware of any work in this area. You can take the lead.
ETSI is currently performing some preparatory work to identify what is
specific/different from a Certification Policy.
Thenafter, ETSI will be addressing the topic: "Policy Requirements for
Attribute Authorities" (i.e. the set of practices and procedures that an
Attribute Authority should observe when issuing Attribute Certificates).
Any input on this topic will be appreciated and can be sent directly to me.
I will take care of them within the ETSI group.
Denis
> Russ
>
> At 05:41 PM 3/5/2002 -0500, Christopher S. Francis wrote:
>
> >Is there a defined mechanism to specify something analogous to a
> >certificate policy in an attribute certificate?
> >
> >
> >
> >In reviewing the PKIX AC profile, I see that the syntax of the attributes
> >field is defined by the AttributeType OID, but rather than syntax per se,
> >I m looking for a way to specify the particular set of policies,
> >practices, and procedures that the attribute authority was operating under
> >when it issued the attribute certificate. Seems like this would be
> >important to relying parties.
> >
> >
> >
> >X.509 includes an acceptablePrivilegePolicies extension that seems like it
> >might to the job, but it was apparently profiled out by PKIX.
> >
> >
> >
> >Chris Francis
> >
> >
> >
> >