[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: [security-services] [Fwd: Are there DName encoding samples?]
Folks, Here's a serendipitous posting from the xmldsig list on the very topic of escaping, rfc2253 and xml! I'd argue strongly that SAML should, one way or another (i.e. modulo schema baking), re-use the dsig X.500 name handling. (I could rephrase this by saying that we don't need two brand new ways to confuse ourselves about x.500 naming - one should be just fine:-) Stephen. Harada wrote: > > Gindin-san > > Thank you very much. > I was led into wrong way missing a simple example. > I know little RFC 2253, and my processor produces as: > <X509IssuerName>CN=J. Random Nerd\, O=Dewey\, Cheatham\, \+ Howe\, > L=Nowhere\, ST=AK\, C=US</X509IssuerName> > It's my misunderstanding. > > ----- Original Message ----- > From: "Tom Gindin" <tgindin@us.ibm.com> > To: "Harada" <harada@prs.cs.fujitsu.co.jp> > Cc: <w3c-ietf-xmldsig@w3.org> > Sent: Tuesday, March 05, 2002 9:45 PM > Subject: Re: Are there DName encoding samples? > > > > > Harada-san: > > > > May I ask whether your difficulty with the examples is the absence > of > > non-ASCII characters in the example DN's in 4.4.4, the absence of the > > escapable characters from those examples, or the fact that the example > > certificates are truncated to very short lengths? RFC 2253 says that the > > encoding of DN's is UTF-8 (of which ASCII is a subset), and the heuristic > > given is fairly clear, although you're supposed to encode DN's in XML by > > using the same character set as the rest of the document. > > An ASCII example with escapable characters would be: > > <X509IssuerName>CN=J. Random Nerd, O=Dewey\, Cheatham\, \+ Howe, > > L=Nowhere, ST=AK, C=US</X509IssuerName> > > > > I can't easily give you non-ASCII UTF-8 characters in this medium. > > > > Tom Gindin > > > > "Harada" <harada@prs.cs.fujitsu.co.jp>@w3.org on 03/05/2002 03:13:46 AM > > > > Sent by: w3c-ietf-xmldsig-request@w3.org > > > > > > To: <w3c-ietf-xmldsig@w3.org> > > cc: > > Subject: Are there DName encoding samples? > > > > > > Hi, > > > > I implemented the DNames encoding in 4.4.4 The X509Data Element. > > But I feel uneasy because there are no DNames encoding examples in the > > recommendation. > > Does anyone know documents of encoded DName? > > > > > > > > > > > > -- ____________________________________________________________ Stephen Farrell Baltimore Technologies, tel: (direct line) +353 1 881 6716 39 Parkgate Street, fax: +353 1 881 7000 Dublin 8. mailto:stephen.farrell@baltimore.ie Ireland http://www.baltimore.com
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC