[cabfpub] Pre-Ballot 207 ASN.1 Jurisdiction in EV Guidelines
Ben Wilson
ben.wilson at digicert.com
Tue Jul 25 20:34:01 UTC 2017
For pre-Ballot discussion, here are some changes to correct the way that
ASN.1 Jurisdiction of Incorporation is expressed in the EV Guidelines:
A. In the EV Guidelines, Section 9.2.5 Subject Jurisdiction of
Incorporation or Registration Field, under Certificate Fields, STRIKE "ASN.1
- X520LocalityName as specified in RFC 5280", "ASN.1 -
X520StateOrProvinceName as specified in RFC 5280", and "ASN.1 -
X520countryName as specified in RFC 5280" so that "Certificate Fields"
reads:
Certificate fields:
Locality (if required):
subject:jurisdictionLocalityName (OID: 1.3.6.1.4.1.311.60.2.1.1)
State or province (if required):
subject:jurisdictionStateOrProvinceName (OID: 1.3.6.1.4.1.311.60.2.1.2)
Country:
subject:jurisdictionCountryName (OID: 1.3.6.1.4.1.311.60.2.1.3)
B. In the EV Guidelines ADD an Appendix G that reads:
Appendix G - Abstract Syntax Notation One module for EV certificates
CABFSelectedAttributeTypes {joint‐iso‐itu‐t(2) international‐
organizations(23) ca‐browser‐forum(140) module(4)
cabfSelectedAttributeTypes(1) 1}
DEFINITIONS ::=
BEGIN
-- EXPORTS All
IMPORTS
-- from Rec. ITU-T X.501 | ISO/IEC 9594-2
selectedAttributeTypes, ID, ldap-enterprise
FROM UsefulDefinitions {joint-iso-itu-t ds(5) module(1)
usefulDefinitions(0) 7}
-- from the X.500 series
ub-locality-name, ub-state-name
FROM UpperBounds {joint-iso-itu-t ds(5) module(1) upperBounds(10) 7}
-- from Rec. ITU-T X.520 | ISO/IEC 9594-6
DirectoryString{}, CountryName
FROM SelectedAttributeTypes selectedAttributeTypes;
id-evat-jurisdiction ID ::= {ldap-enterprise 311 ev(60) 2 1}
id-evat-jurisdiction-localityName ID ::= {id-evat-jurisdiction 1}
id-evat-jurisdiction-stateOrProvinceName ID ::= {id-evat-jurisdiction 2}
id-evat-jurisdiction-countryName ID ::= {id-evat-jurisdiction 3}
jurisdictionLocalityName ATTRIBUTE ::= {
SUBTYPE OF name
WITH SYNTAX DirectoryString{ub-locality-name}
LDAP-SYNTAX directoryString.&id
LDAP-NAME {"jurisdictionL"}
ID id-evat-jurisdiction-localityName }
jurisdictionStateOrProvinceName ATTRIBUTE ::= {
SUBTYPE OF name
WITH SYNTAX DirectoryString{ub-state-name}
LDAP-SYNTAX directoryString.&id
LDAP-NAME {"jurisdictionST"}
ID id-evat-jurisdiction-stateOrProvinceName }
jurisdictionCountryName ATTRIBUTE ::= {
SUBTYPE OF name
WITH SYNTAX CountryName
SINGLE VALUE TRUE
LDAP-SYNTAX countryString.&id
LDAP-NAME {"jurisdictionC"}
ID id-evat-jurisdiction-countryName }
END
Ben Wilson, JD, CISA, CISSP
VP Compliance
+1 801 701 9678
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cabforum.org/pipermail/public/attachments/20170725/6a71b386/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 6110 bytes
Desc: not available
URL: <http://cabforum.org/pipermail/public/attachments/20170725/6a71b386/attachment-0001.jpg>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: pre-Ballot-207-ASN.1-Jurisdiction-in-EV.pdf
Type: application/pdf
Size: 149576 bytes
Desc: not available
URL: <http://cabforum.org/pipermail/public/attachments/20170725/6a71b386/attachment-0001.pdf>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4974 bytes
Desc: not available
URL: <http://cabforum.org/pipermail/public/attachments/20170725/6a71b386/attachment-0001.p7s>
More information about the Public
mailing list