Attribute Ordering

Ken & Hoyt

Thanx for the response which I take to be:

1) Duplicate attribute tags are illegal, 2) Attributes must be ordered
by tag value.

I certainly had no reason to request that things be any different, in
fact, if a certificate is to be distinguished (ie.  the same
irrespective of the program that generated it) and hashing is clearly
order dependant, then I think that the above restrictions are
reasonable.  The question arose because of a certificate from TIS which
does not meet the ordering requirement.

If 501 & 509 are being reworked, it would help if the rules for DER were
listed clearly in a single place.  Its hard to know which rules to apply
in which situations.  Also ASN1 does not seem to work very well in the
case of signing or encyption.  It seems that transformations were not
considered when it was developed.  (By the way we had exactly the same
difficulty when we put encyption into EDI)

Peace ..Tom Jones

<Prev in Thread]	Current Thread	[Next in Thread>
Attribute Ordering, TCJones <= Re: Attribute Ordering, James M Galvin Re: Attribute Ordering, Raymond Lau Re: Attribute Ordering, David M. Balenson Re: Attribute Ordering, Raymond Lau Re: Attribute Ordering, Charles W. Gardiner Re: Attribute Ordering, Hoyt Kesterson Re: Attribute Ordering, Steve Kent Re: Attribute Ordering, John Lowry

Previous by Date:	Re: Object ID's, Hoyt Kesterson
Next by Date:	Re: Attribute Ordering, James M Galvin
Previous by Thread:	SIGNED again with null statements (FYI), Peter Williams
Next by Thread:	Re: Attribute Ordering, James M Galvin
Indexes:	[Date] [Thread] [Top] [All Lists]