Re[3]: response to old mail

I did include one item in my summary which was new, and has not 
yet been extensively addressed, and that was my suggestion that 
we consider modifying X.509 to include relevant information

such

as the user's e-mailo address, physical address, and perhaps telephone 
number without requiring that information to be placed in the DN.


Have you looked at PKCS #6 (available via anonymous ftp from rsa.com)? 
It gives a syntax for extended certificates that includes a set of 
attributes as well as the distinguished name and public key.

X9F1 is looking at similar structures for the X9.30 and X9.31 DSA/RSA 
standards.

And the recent "chance to fix X.509" seems to offer some opportunity 
in this direction.

-- Burt

<Prev in Thread]	Current Thread	[Next in Thread>
response to old mail, Steve Kent Re: response to old mail, jueneman%wotan Re: response to old mail, Theodore Ts'o Re: response to old mail, Beast (Donald E. Eastlake, 3rd) Re: response to old mail, Christian Huitema Re: Re: response to old mail, jueneman%wotan Re[3]: response to old mail, burt <= Re: Re[3]: response to old mail, jueneman%wotan Re: Re: response to old mail, jueneman%wotan

Previous by Date:	Re: response to old mail, Beast (Donald E. Eastlake, 3rd)
Next by Date:	Re: response to old mail, Christian Huitema
Previous by Thread:	Re: Re: response to old mail, jueneman%wotan
Next by Thread:	Re: Re[3]: response to old mail, jueneman%wotan
Indexes:	[Date] [Thread] [Top] [All Lists]