[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Last Call: Internet X.509 Public Key Infrastructure Certificate and CRL Profile to Proposed Standard
Hello,
As the PKIX group considered to put as mandatory the RFC1274 attribute
userid & PKCS 9 emailAddress ?
Could a rationale be put why the PKIX group exclude them from the pool
of commonly used attributes , subject to standardization ?
9.3.1. Userid
The Userid attribute type specifies a computer system login name.
userid ATTRIBUTE
WITH ATTRIBUTE-SYNTAX
caseIgnoreStringSyntax
(SIZE (1 .. ub-user-identifier))
::= {pilotAttributeType 1}
Our needs analysis show that in a 50000+ world-wide corporation, a personal rdn is not an easy task to perform :
-cn is not sufficient as too many homonyms exist
-location & country are inadequate for a mobile workforce
as they create a high burden on the CA as people move.
-people are attached to a location independant SMTP email address
while employed for continuity of business.
-access controls force to have personal company identifiers which are never reused by new employees.
Looking forward to reading you,
--francois
--
Francois Leclerc SCHLUMBERGER Austin Product Center
Associate Research Scientist 8311 North F.M 620 Road
Fax: 1 512 331-3760 Austin, Texas 78726 USA
Tel: 1 512 331-3133 fleclerc@slb.com or leclerc@austin.apc.slb.com