[Smcwg-public] Presence of pseudonym based on commonName value in legacy profile
Christophe Bonjean
christophe.bonjean at globalsign.com
Wed Apr 12 14:55:49 UTC 2023
Hi all,
I propose the following change to address this:
https://github.com/chrisbn/smime/compare/main...chrisbn:smime:pseudonym-fix
Maybe we could include this in the erratum ballot?
Christophe
From: Christophe Bonjean
Sent: Friday, February 17, 2023 3:44 PM
To: smcwg-public at cabforum.org
Subject: Presence of pseudonym based on commonName value in legacy profile
Hi all,
I'd like to clarify the presence requirements of the subject:pseudonym
field, in combination with the subject:commonName field.
According to section 7.1.4.2.2 "Subject distinguished name fields" the
subject:commonName field can contain the value of the subject:pseudonym
field.
Note 2 of 7.1.4.2.5 states: "Legacy Generation profiles MAY omit the
subject:givenName, subject:surname, and subject:pseudonym attributes and
include only the subject:commonName as described in Section 7.1.4.2.2(a)."
If the commonName field can contain the values of the pseudonym field, but
the pseudonym field MAY be omitted, this seems a bit conflicting.
Perhaps we should refer to "Pseudonym" instead of "subject:pseudonym" as the
permitted values for commonName in 7.1.4.2.2 a?
Christophe
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20230412/68b77c73/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 8436 bytes
Desc: not available
URL: <http://lists.cabforum.org/pipermail/smcwg-public/attachments/20230412/68b77c73/attachment.p7s>
More information about the Smcwg-public
mailing list