[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: new version of draft on additional x509certificateschemafor LDAP
"Kurt D. Zeilenga" wrote:
> To paraphrase the subclassing restrictions:
> A structural class cannot subclass an auxiliary class.
> An auxiliary class cannot subclass a structural class.
> An abstract class cannot subsclass an auxiliary class.
> An abstract class cannot subsclass a structural class.
>
This is definately paraphrasing, and most of us would agree that these
restrictions are sensible, but I repeat, you cannot find sentences in
X.501 that catagorically state the above, and you can find statements in
X.501 that appear to allow some of the above.
> If consensus is to go the STRUCTURAL route, I suggest defining one
> abstract class and two structural classes.
>
> If consensus is to go the AUXILIARY route, I suggest defining one
> abstract class and two auxiliary classes.
>
I was suggesting an alternative: one AUXILIARY (for packaging) and two
(unrelated) STRUCTURALs for certificate objects (CAs and Users). But I
think we should hold the discussion until we have the schemas for CRLs
and ACs. We will then see some common packaging needs (e.g. issuer and
serial number) that is not in the existing proposed schemas, and so we
might want to have different object classes.
David
*****************************************************************
David W. Chadwick, BSc PhD
Professor of Information Systems Security
IS Institute, University of Salford, Salford M5 4WT
Tel: +44 161 295 5351 Fax +44 01484 532930
Mobile: +44 77 96 44 7184
Email: D.W.Chadwick@xxxxxxxxxxxxx
Home Page: http://www.salford.ac.uk/its024/chadwick.htm
Research Projects: http://sec.isi.salford.ac.uk
Understanding X.500: http://www.salford.ac.uk/its024/X500.htm
X.500/LDAP Seminars: http://www.salford.ac.uk/its024/seminars.htm
Entrust key validation string: MLJ9-DU5T-HV8J
PGP Key ID is 0xBC238DE5
*****************************************************************
begin:vcard
n:Chadwick;David
tel;cell:+44 77 96 44 7184
tel;fax:+44 1484 532930
tel;home:+44 1484 352238
tel;work:+44 161 295 5351
x-mozilla-html:FALSE
url:http://www.salford.ac.uk/its024/chadwick.htm
org:University of Salford;IS Institute
version:2.1
email;internet:d.w.chadwick@xxxxxxxxxxxxx
title:Professor of Information Security
adr;quoted-printable:;;The Crescent=0D=0A;Salford;Greater Manchester;M5 4WT;England
note;quoted-printable:Research Projects: http://sec.isi.salford.ac.uk.......................=0D=0A=0D=0AUnderstanding X.500: http://www.salford.ac.uk/its024/X500.htm .......................=0D=0A=0D=0AX.500/LDAP Seminars: http://www.salford.ac.uk/its024/seminars.htm...................=0D=0A=0D=0AEntrust key validation string: CJ94-LKWD-BSXB ...........=0D=0A=0D=0APGP Key ID is 0xBC238DE5
x-mozilla-cpt:;-4856
fn:David Chadwick
end:vcard