Folks,
Until recently, I used to quote the usage of X.509 certificates by PEM as one
of these nice examples of rosy cooperation between the IETF and the ISO.
Indeed, there were a couple of small nits in the CRLs, but that could be
explained away quite easily.
I said "until recently", for until recently ISO used to be compatible with
ISO. It seems that the new version of certificates in the 1992 revision of
X.509 is slightly incompatible with the 1988 edition. Note, this is hearsay;
in fact, I would very much like to hear some more knowledgeable expert
explaining what the difference really is. Anyhow, there is enough difference
that some of my partners consider them as two different products.
I must say that I am not delighted, and that if this is what one get from
using ISO technologies in the Internet, then I would rather recommend that we
stay away from any further attempts of "alignment", "liaison" or whatever.
Christian Huitema