Great idea!
David P. Kemp wrote:
From: Russ Housley <housley(_at_)spyrus(_dot_)com>
John:
1) How about the following ASN.1. It has shorter names.
AuthAttributes ::= SET OF AuthAttribute
AuthAttribute ::= SEQUENCE {
attrType OBJECT IDENTIFIER,
critical BOOLEAN DEFAULT FALSE,
attrValues SET OF AttributeValue }
UnauthAttributes ::= SET OF UnauthAttribute
UnauthAttribute ::= SEQUENCE {
attrType OBJECT IDENTIFIER,
attrValues SET OF AttributeValue }
Russ,
How about adding a size constraint to the ASN.1. Do we envision
ever needing an empty set of authenticated or unauthenticated
attributes?
AuthAttributes ::= SET SIZE(1..MAX) OF AuthAttribute
UnauthAttributes ::= SET SIZE(1..MAX) OF UnauthAttribute
Phil
--
Phillip H. Griffin Griffin Consulting
asn1(_at_)mindspring(_dot_)com ASN.1-SET-Java-Security
919.828.7114 1625 Glenwood Avenue
919.832.7008 [mail] Raleigh, North Carolina 27608 USA
------------------------------------------------------------
Visit http://www.fivepointsfestival.com
www.five-points.com
------------------------------------------------------------