draft-ietf-lamps-eai-addresses-01.txt   draft-ietf-lamps-eai-addresses-02.txt 
LAMPS A. Melnikov, Ed. LAMPS A. Melnikov, Ed.
Internet-Draft Isode Ltd Internet-Draft Isode Ltd
Intended status: Standards Track W. Chuang, Ed. Intended status: Standards Track W. Chuang, Ed.
Expires: May 3, 2017 Google, Inc. Expires: May 4, 2017 Google, Inc.
October 30, 2016 October 31, 2016
Internationalized Email Addresses in X.509 certificates Internationalized Email Addresses in X.509 certificates
draft-ietf-lamps-eai-addresses-01 draft-ietf-lamps-eai-addresses-02
Abstract Abstract
This document defines a new name form for inclusion in the otherName This document defines a new name form for inclusion in the otherName
field of an X.509 Subject Alternative Name extension that allows a field of an X.509 Subject Alternative Name extension that allows a
certificate subject to be associated with an Internationalized Email certificate subject to be associated with an Internationalized Email
Address. Address.
Status of This Memo Status of This Memo
skipping to change at page 1, line 34 skipping to change at page 1, line 34
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet- working documents as Internet-Drafts. The list of current Internet-
Drafts is at http://datatracker.ietf.org/drafts/current/. Drafts is at http://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
This Internet-Draft will expire on May 3, 2017. This Internet-Draft will expire on May 4, 2017.
Copyright Notice Copyright Notice
Copyright (c) 2016 IETF Trust and the persons identified as the Copyright (c) 2016 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of (http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
skipping to change at page 2, line 21 skipping to change at page 2, line 21
certificates . . . . . . . . . . . . . . . . . . . . . . . . 3 certificates . . . . . . . . . . . . . . . . . . . . . . . . 3
5. Name constraints in path validation . . . . . . . . . . . . . 4 5. Name constraints in path validation . . . . . . . . . . . . . 4
6. Resource Considerations . . . . . . . . . . . . . . . . . . . 6 6. Resource Considerations . . . . . . . . . . . . . . . . . . . 6
7. Security Considerations . . . . . . . . . . . . . . . . . . . 6 7. Security Considerations . . . . . . . . . . . . . . . . . . . 6
8. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 7 8. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 7
9. References . . . . . . . . . . . . . . . . . . . . . . . . . 7 9. References . . . . . . . . . . . . . . . . . . . . . . . . . 7
9.1. Normative References . . . . . . . . . . . . . . . . . . 7 9.1. Normative References . . . . . . . . . . . . . . . . . . 7
9.2. Informative References . . . . . . . . . . . . . . . . . 8 9.2. Informative References . . . . . . . . . . . . . . . . . 8
Appendix A. ASN.1 Module . . . . . . . . . . . . . . . . . . . . 8 Appendix A. ASN.1 Module . . . . . . . . . . . . . . . . . . . . 8
Appendix B. Acknowledgements . . . . . . . . . . . . . . . . . . 9 Appendix B. Acknowledgements . . . . . . . . . . . . . . . . . . 9
Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 10 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 9
1. Introduction 1. Introduction
[RFC5280] defines rfc822Name subjectAltName choice for representing [RFC5280] defines rfc822Name subjectAltName choice for representing
[RFC5322] email addresses. This form is restricted to a subset of [RFC5322] email addresses. This form is restricted to a subset of
US-ASCII characters and thus can't be used to represent US-ASCII characters and thus can't be used to represent
Internationalized Email addresses [RFC6531]. To fascilitate use of Internationalized Email addresses [RFC6531]. To fascilitate use of
these Internationalized Email addresses with X.509 certificates, this these Internationalized Email addresses with X.509 certificates, this
document specifies a new name form in otherName so that document specifies a new name form in otherName so that
subjectAltName and issuerAltName can carry them. subjectAltName and issuerAltName can carry them.
skipping to change at page 2, line 51 skipping to change at page 2, line 51
3. Name Definitions 3. Name Definitions
The GeneralName structure is defined in [RFC5280], and supports many The GeneralName structure is defined in [RFC5280], and supports many
different names forms including otherName for extensibility. This different names forms including otherName for extensibility. This
section specifies the smtputf8Name name form of otherName, so that section specifies the smtputf8Name name form of otherName, so that
Internationalized Email addresses can appear in the subjectAltName of Internationalized Email addresses can appear in the subjectAltName of
a certificate, the issuerAltName of a certificate, or anywhere else a certificate, the issuerAltName of a certificate, or anywhere else
that GeneralName is used. that GeneralName is used.
id-on-smtputf8Name OBJECT IDENTIFIER ::= { id-on 9 } id-on-smtputf8Name OBJECT IDENTIFIER ::= { id-on TBD }
Smtputf8Name ::= UTF8String (SIZE (1..MAX)) Smtputf8Name ::= UTF8String (SIZE (1..MAX))
When the subjectAltName (or issuerAltName) extension contains an When the subjectAltName (or issuerAltName) extension contains an
Internationalized Email address, the address MUST be stored in the Internationalized Email address, the address MUST be stored in the
smtputf8Name name form of otherName. The format of smtputf8Name is smtputf8Name name form of otherName. The format of smtputf8Name is
defined as the ABNF rule smtputf8Mailbox. smtputf8Mailbox is a defined as the ABNF rule smtputf8Mailbox. smtputf8Mailbox is a
modified version of the Internationalized Mailbox which is defined in modified version of the Internationalized Mailbox which is defined in
Section 3.3 of [RFC6531] which is itself derived from SMTP Mailbox Section 3.3 of [RFC6531] which is itself derived from SMTP Mailbox
from Section 4.1.2 of [RFC5321]. [RFC6531] defines the following from Section 4.1.2 of [RFC5321]. [RFC6531] defines the following
ABNF rules for Mailbox whose parts are modified for ABNF rules for Mailbox whose parts are modified for
skipping to change at page 9, line 8 skipping to change at page 9, line 8
Appendix A. ASN.1 Module Appendix A. ASN.1 Module
The following ASN.1 module normatively specifies the Smtputf8Name The following ASN.1 module normatively specifies the Smtputf8Name
structure. This specification uses the ASN.1 definitions from structure. This specification uses the ASN.1 definitions from
[RFC5912] with the 2002 ASN.1 notation used in that document. [RFC5912] with the 2002 ASN.1 notation used in that document.
LAMPS-EaiAddresses-2016 LAMPS-EaiAddresses-2016
{ iso(1) identified-organization(3) dod(6) { iso(1) identified-organization(3) dod(6)
internet(1) security(5) mechanisms(5) pkix(7) id-mod(0) internet(1) security(5) mechanisms(5) pkix(7) id-mod(0)
id-mod-lamps-eai-addresses-2016(88) } id-mod-lamps-eai-addresses-2016(TBD) }
DEFINITIONS IMPLICIT TAGS ::= DEFINITIONS IMPLICIT TAGS ::=
BEGIN BEGIN
IMPORTS IMPORTS
id-pkix OBJECT IDENTIFIER ::= id-pkix OBJECT IDENTIFIER ::=
{iso(1) identified-organization(3) dod(6) internet(1) security(5) {iso(1) identified-organization(3) dod(6) internet(1) security(5)
mechanisms(5) pkix(7)} mechanisms(5) pkix(7)}
-- --
-- otherName carries additional name types for subjectAltName, issuerAltName, -- otherName carries additional name types for subjectAltName, issuerAltName,
-- and other uses of GeneralNames. -- and other uses of GeneralNames.
-- --
-- Note that the LAMPS-EaiAddresses-2016 module and id-on-smtputf8Name OID
-- uses example IANA numbers i.e. are non-normative.
--
id-on OBJECT IDENTIFIER ::= { id-pkix 8 } id-on OBJECT IDENTIFIER ::= { id-pkix 8 }
SmtpUtf8OtherNames OTHER-NAME ::= { on-smtputf8Name, ... } SmtpUtf8OtherNames OTHER-NAME ::= { on-smtputf8Name, ... }
on-smtputf8Name OTHER-NAME ::= { on-smtputf8Name OTHER-NAME ::= {
SmtpUtf8Name IDENTIFIED BY id-on-smtputf8Name SmtpUtf8Name IDENTIFIED BY id-on-smtputf8Name
} }
id-on-smtputf8Name OBJECT IDENTIFIER ::= { id-on 9 } id-on-smtputf8Name OBJECT IDENTIFIER ::= { id-on TBD }
SmtpUtf8Name ::= UTF8String (SIZE (1..MAX)) SmtpUtf8Name ::= UTF8String (SIZE (1..MAX))
END END
Figure 2 Figure 2
Appendix B. Acknowledgements Appendix B. Acknowledgements
Thank you to Magnus Nystrom for motivating this document. Thanks to Thank you to Magnus Nystrom for motivating this document. Thanks to
 End of changes. 8 change blocks. 
11 lines changed or deleted 8 lines changed or added

This html diff was produced by rfcdiff 1.45. The latest version is available from http://tools.ietf.org/tools/rfcdiff/