Double quotes in DNs

[Martin Lindström <martin@xxxxxxx>]

I've got a concrete question about using double quotes '"' as parts
of a distinguished name. Suppose I want my Organization to be:
Martin Lindstrom, Creative Computing. Since the attribute value
contains a ',' character i put the string within quotes (as stated in
RFC1779). O="Martin Lindstrom, Creative Computing".

RFC2459 has a rule (4.1.2.4) of how to choose which ASN.1 string 
to use from the CHOICE structure DirectoryString, and I start trying
to use a PrintableString.
If the double quotes were to be part of the coding I can't use
a PrintableString (since '"' characters are not part of the
PrintableString set according to X.680), but would have to use
a BMPString.
On the other hand, I could remove the double quotes before I
encode the DN and encode the Organization attribute as a PrintableString. 
But this leads to that I have to, when I decode, parse the names in 
the DN to find out if I have to put back any removed double quotes. 
If I didn't put back the double quotes, I would not have a DN 
which is valid according to RFC1779 anymore.

OK, the question would be: "Should double quotes be part of an
encoding or not?".

Regards Martin Lindström

______________________________________
         Entegrity Solutions

  Martin Lindström
  Senior Systems Engineer 

  Finlandsgatan 60 
  S-164 74 Kista, Sweden
  Direct: +46-(0)8-477-7735
  Fax:    +46-(0)8-477-7731
  Cell:   +46-(0)70-483-0024
______________________________________