Re: Residential CAs and DN subordination


I would therefore suggest that the correct form should be something
like 

C=US, O=GTE [or USPS, or RSA DSI, or California DMV],
OU=Residential Person CA [or OU=Customer],
State=California, localityName=Burbank, streetAddress=12345 El Camino,
CN=Johnny Carson


A DN is to uniquely identify the user.  It should not require the CA's name in 
the users' DN.
Just think about how the DN can be specified later?  Do you want to know or 
care what CA I registered with?
Actulally, I think having the CA name in the DN is a source of global 
incompatibility and non-uniqueness.

_______________________________________________________________________
Alireza Bahreman                          E-Mail: 
bahreman(_at_)bellcore(_dot_)com
Bellcore, Room RRC-1K221                  Phone : +1 908 699 7398
444 Hoes Lane, Piscataway, NJ 08854       Fax   : +1 908 336 2943

<Prev in Thread]	Current Thread	[Next in Thread>
Residential CAs and DN subordination, Raymond Lau Re: Residential CAs and DN subordination, Theodore Ts'o Re: Residential CAs and DN subordination, jueneman Re: Residential CAs and DN subordination, Alireza Bahreman <= Re: Re: Residential CAs and DN subordination, jueneman Re: Residential CAs and DN subordination, Raymond Lau

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: Certificate revocation, jueneman
Next by Date:	Re: CRLs: COST-PEM Solutions, jueneman
Previous by Thread:	Re: Residential CAs and DN subordination, jueneman
Next by Thread:	Re: Re: Residential CAs and DN subordination, jueneman
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: Certificate revocation, jueneman

Next by Date:

Re: CRLs: COST-PEM Solutions, jueneman

Previous by Thread:

Re: Residential CAs and DN subordination, jueneman

Next by Thread:

Re: Re: Residential CAs and DN subordination, jueneman

Indexes:

[Date] [Thread] [Top] [All Lists]