When creating an S/MIME v3 signed message, a SignerInfo structure is
created. This structure contains an IssuerAndSerialNumber structure.
IssuerAndSerialNumber looks like this:
IssuerAndSerialNumber ::= SEQUENCE {
issuer Name,
serialNumber SerialNumber }
If the message signer is represented with an X.509 or PKCS #6
extended certificate, determining the issuer's Name and the
signer's serial number is straightforward. If, however, the
signer is represented with an attribute certificate it might
not be possible to get a map to a Name value because the
attribute certificate issuer field is GeneralNames, not Name.
What happens when the issuer's GeneralNames is represented by
something other than a Name?
Maybe IssuerAndSerialNumber should be changed to use type
GeneralNames for the issuer field instead of Name...
----->
Scott Hollenbeck (mailto: hollenbe(_at_)east(_dot_)xsis(_dot_)xerox(_dot_)com)
Xerox Special Information Systems
Arlington, Virginia, USA