Re: re:X.509 v3 Certificate

Bob:

Thanks for the response.  When we tried to encode email addresses into
distinguished names some time ago, we discovered that characters like "@",
"%" and "!" were not permitted in the value.


Warwick, it might be helpful to refresh people's memory as to IA5, vs.
printableString and other encoding rules. I remember going round and round on
this, as to whether the 128-character version was used or the full 256
character, but I can't remember the specifics off the top of my head.


IA5string supports the 128-character IA5 set, including all control characters. 
 
PrintableString is a subset which does not support control characters and 
misses 
out a few special characters.  I believe past problems were due to use of 
PrintableString.  The X.509 extensions use IA5string for RFC822Name and DNSName.

Richer character set options also exist in ASN.1.

Warwick

<Prev in Thread]	Current Thread	[Next in Thread>
X.509 v3 Certificate, warwick (w.s.) ford re:X.509 v3 Certificate, warwick (w.s.) ford Re: X.509 v3 Certificate, John Linn re:X.509 v3 Certificate, Steve Crocker re:X.509 v3 Certificate, warwick (w.s.) ford re:X.509 v3 Certificate, Steve Crocker Re: X.509 v3 Certificate, spock Re: X.509 v3 Certificate, warwick (w.s.) ford Re: re:X.509 v3 Certificate, Jueneman Re: re:X.509 v3 Certificate, warwick (w.s.) ford <=

Previous by Date:	Re: unpublished public keys (was: voting), Amanda Walker
Next by Date:	Re: unpublished public keys (was: voting), Jueneman
Previous by Thread:	Re: re:X.509 v3 Certificate, Jueneman
Next by Thread:	Mime security constructs...last call?, Dave Crocker
Indexes:	[Date] [Thread] [Top] [All Lists]