home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Internet Info 1994 March
/
Internet Info CD-ROM (Walnut Creek) (March 1994).iso
/
inet
/
ietf
/
91mar
/
pemI-minutes-91mar.txt
< prev
next >
Wrap
Text File
|
1993-02-17
|
2KB
|
53 lines
CURRENT_MEETING_REPORT_
Reported by James Galvin/TIS
PEM I BOF Minutes
RFCs 1113, 1114 and 1115 are currently being revised. During this
meeting, two new requirements that will be specified in the revised RFCs
were discussed.
o Construction of distinguished names
o Implementation requirements
The revised RFCs, more precisely RFC 1114, will be specifying the use of
mandatory, optional and prohibited attributes to be used in the
construction of distinguished names. The reasons both for and against
the rules were discussed. The principal reason in favor of the explicit
rules was enhancement of the assurance of the proper operation of the
certificate infrastructure. The ability to recognize and distinguish
individual certificates from the those of a certification authority is a
desirable feature. The principal reason against the explicit rules was
the concern about interoperability with directory services pilots and
the migration of PEM to use these services. However, the discussion did
not yield a technical basis for the concern.
The revised RFCs, more precisely RFC 1114, will be specifying
requirements on implementations that directly affect the user interface.
Although it was agreed that security is enhanced if the requirements are
implemented, it was unanimously agreed there are other mechanisms by
which the ``concepts'' could be met. There was a good deal of concern
about this issue. The Chair was tasked with bringing the issue to the
attention of the Security Area Director and forwarding comments as
appropriate.
Attendees
James Galvin galvin@tis.com
Anthony Lauck lauck@tl.enet.dec.com
John Linn ULTRA::LINN
E. Paul Love loveep@sdsc.edu
Michael Reilly reilly@pa.dec.com
Jeffrey Schiller jis@mit.edu
Sam Sjogren sjogren@tgv.com
1
