[cabfpub] RFC5280

Rob Stradling rob.stradling at comodo.com
Wed Feb 24 21:08:32 UTC 2016 

On 24/02/16 19:59, Stephen Davidson wrote:
> Long names:
>
> https://crt.sh/?cablint=230

:-)

I wonder how many of those >64-character organizationNames could easily 
be shrunk to <=64 characters?

e.g.
https://crt.sh/?id=12479081
O=ENSASE (École Nationale Supérieure d'Architecture de Saint-Étienne)

Removing "ENSASE (" and ")" would shrink that one to 58 characters.

> -----Original Message-----
> From: public-bounces at cabforum.org [mailto:public-bounces at cabforum.org] On
> Behalf Of Rob Stradling
> Sent: Wednesday, February 24, 2016 3:57 PM
> To: Jeremy Rowley <jeremy.rowley at digicert.com>; public at cabforum.org
> Subject: Re: [cabfpub] RFC5280
>
> On 24/02/16 18:56, Jeremy Rowley wrote:
> <snip>
>> 1)Org names, common names,  and address fields are limited to 64
>> characters. Very few international companies can comply with this
>> restriction.
>
> Hi Jeremy.  I'm puzzled as to why "international" would have anything to do
> with this.  Can you cite some examples of such international companies?
>
> You do realize that the limit is in characters, not bytes, right?
>
>> It's even worse if you are converting an IDN to a printable string.
>
> If an IDN doesn't fit in a Subject.commonName, then you can omit the
> Subject.commonName field from the cert.
>
> Use SAN.dNSName.
>
> --
> Rob Stradling
> Senior Research & Development Scientist
> COMODO - Creating Trust Online
> _______________________________________________
> Public mailing list
> Public at cabforum.org
> https://cabforum.org/mailman/listinfo/public
>
>

-- 
Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online
Office Tel: +44.(0)1274.730505
Office Fax: +44.(0)1274.730909
www.comodo.com

COMODO CA Limited, Registered in England No. 04058690
Registered Office:
   3rd Floor, 26 Office Village, Exchange Quay,
   Trafford Road, Salford, Manchester M5 3EQ

This e-mail and any files transmitted with it are confidential and 
intended solely for the use of the individual or entity to whom they are 
addressed.  If you have received this email in error please notify the 
sender by replying to the e-mail containing this attachment. Replies to 
this email may be monitored by COMODO for operational or business 
reasons. Whilst every endeavour is taken to ensure that e-mails are free 
from viruses, no liability can be accepted and the recipient is 
requested to use their own virus checking software.

More information about the Public mailing list