What will PEM use for e-mail address <-> DN mapping? I would think
something like this should be sufficiant
RFC822 address Distinguished Name
huntting(_at_)advtech(_dot_)uswest(_dot_)com o=Internet
Nope. Should be c=Internet
domainComponent=COM
domainComponent=USWEST
domainComponent=ADVTECH
commonName=huntting
The only problem I see with this is that "commonName" is a case
insensitive attribute type. If this is a problem, we could simply
define a new OID "rfc822LocalPart" which takes a case sensitive
string.
When did the Internet become a country? Or did someone redefine
Country to mean Naming Authority?
Is domainComponent a recognized attribute type that should be supported by
PEM software?
I thought that RFC822 specified that the local part was case insensitive.
The last time this issue came up, no one could cite a system that depended
on case sensitivity, and the general reaction was that if there was such a
system it ought to be fixed.
Although I understand that some PCAs may support this type of DN structure,
I certainly hope that it doesn't become commonplace. I know that some
other PCAs intend to disallow such names, insisting on the use of valid
Organizations, qualified as necessary with their location.
Bob