[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DN Encoding by UTF8String

To: ietf-pkix@xxxxxxx
Subject: Re: DN Encoding by UTF8String
From: Dr Stephen Henson <shenson@xxxxxxxxxxxxxxxxxxxxx>
Date: Fri, 12 Dec 2003 12:53:08 +0000
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624

Peter Gutmann wrote:


What we'd really need here is an indication from vendors of how far UTF-8
support goes (or doesn't go) in their products, to determine whether it's safe
to switch it on yet.  The most important one would be Microsoft I guess.  I'll
start the ball rolling by saying that any version of cryptlib that handles
certs will process UTF-8, although none will produce it (at least in a DN) for
the reason given above.

I'll add that the latest releases of OpenSSL (0.9.7c) can handle UTF8 strings in certificates too.

It can also generate certificates containing UTF8Strings by means of a configuration file option, but this is not set by default.

Steve.
--
Dr Stephen N. Henson.
Core developer of the   OpenSSL project: http://www.openssl.org/
Freelance consultant see: http://www.drh-consultancy.co.uk/
Email: shenson@xxxxxxxxxxxxxxxxxxxxx, PGP key: via homepage.

Follow-Ups:
- Re: DN Encoding by UTF8String
  - From: Jean-Marc Desperrier

References:
- Re: Re[2]: DN Encoding by UTF8String
  - From: Peter Gutmann

Prev by Date: Re: Web-PKI Keygen/Certreq Questions
Next by Date: Re: DN Encoding by UTF8String
Previous by thread: Re: Re[2]: DN Encoding by UTF8String
Next by thread: Re: DN Encoding by UTF8String
Index(es):
- Date
- Thread