RE: Comments about Part 2

[Marc Branchaud <marcnarc@xxxxxxxxx>]

-----BEGIN PGP SIGNED MESSAGE-----


On Fri, 26 Sep 1997, Peter Whittaker wrote:
> 
> >3.2.1 CertTemplate definition
> >
> >Why are issuer and Subject defined as Name instead of GeneralName?
> 
> The definition of Certificate in X.509 uses Name for subject and issuer.
>  Unless we wish for PKIX to be incompatible with X.509 (and that would
> be bad, by definition of PKIX, right?  :->), we should continue to use
> Name instead of GeneralName for these fields.  Note that PKIX pt1
> describes an accomodation that works as well, and that is to have null
> subject or issuer, with their identity being carried in the
> subjectAltName or issuerAltName extension.

I get it now, thanks...

> >
> >3.2.4 Certificate Identification
> >
> >Shouldn't serialNumber be a CertificateSerialNumber?
> 
> That seems right, for the sake of complete accuracy (in the end, they
> are the same thing, as CertificateSerialNumber is defined as INTEGER).
> 

Yeah, it's just a nit.  I noticed it because it made me stop to wonder if
it was different from a certificate's serial number.  No big deal,
though...

		Marc

+------------------------------------------------------------------------+
 Marc Branchaud                                       \/
 Chief PKI Architect                                  /\CERT SOFTWARE INC.
 marcnarc@xcert.com        PKI References page:              www.xcert.com
 604-640-6210x227      www.xcert.com/~marcnarc/PKI/
+------------------------------------------------------------------------+

-----BEGIN PGP SIGNATURE-----
Version: 2.6.2

iQB1AwUBNCvejVrdFXNdDxPlAQH2DgMAsozLhX82uv8YQ/f0PbuB+9rzdv+1zch2
TbZQXSV2VF5QnpjnuTFekTXQgztJ6mH88txyzXkjfGGKBEdPncyKUeRf351JhHND
5eBihsU1ckBID9N9hsvZClQwTbVGHTW9
=0ncM
-----END PGP SIGNATURE-----