[cabfpub] Naming rules
Peter Bowen
pzb at amzn.com
Fri Mar 10 15:33:04 UTC 2017
> On Mar 10, 2017, at 2:18 AM, 陳立群 <realsky at cht.com.tw> wrote:
>
> We hope this discussion is about getting an existing established PKI to be BR-compliant by changing the BRs instead of changing the PKI.
>
> The DIT naming rules of Taiwan Government PKI (GPKI) were defined according to related laws or regulations. For government entities in the DIT, their Distinguished Names (DNs) were specified according to the related government organizational laws, such as Organizational Act of the Executive Yuan ("Executive Yuan" is our Cabinet.). For private organizations such as companies or business entities, their Distinguished Names (DNs) were specified according to the name rules required by the related registration laws such as Company Act or Business Registration Act. The DIT naming rules were then incorporated into the CPS of CAs in the GPKI and were also incorporated into the Certificate and CRL profiles of the GPKI. Our Government CA needs to follow the naming rules specified in the CPS and the Certificate Profile.
> […]
> If you are interested in the DIT hierarchy of our Government PKI, you can visit the following web page. However, the web page is in Chinese.
>
> http://oid.nat.gov.tw/infobox1/personmain.jsp
Is the DIT hierarchy defined in law? I understand that the designers of the DIT naming rules look at at the various laws, but do any of them refer to the names in a X.500 directory and/or in Certificates?
Thanks,
Peter
More information about the Public
mailing list