Browse Prior Art Database

Internet X.509 Public Key Infrastructure: Logotypes in X.509 Certificates (RFC3709)

IP.com Disclosure Number: IPCOM000021971D
Original Publication Date: 2004-Feb-01
Included in the Prior Art Database: 2004-Feb-18
Document File: 22 page(s) / 47K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

S. Santesson: AUTHOR [+3]

Abstract

This document specifies a certificate extension for including logotypes in public key certificates and attribute certificates.

This text was extracted from an ASCII text file.
This is the abbreviated version, containing approximately 8% of the total text.

Network Working Group S. Santesson

Request for Comments: 3709 Microsoft

Category: Standards Track R. Housley

Vigil Security

T. Freeman

Microsoft

February 2004

Internet X.509 Public Key Infrastructure:

Logotypes in X.509 Certificates

Status of this Memo

This document specifies an Internet standards track protocol for the

Internet community, and requests discussion and suggestions for

improvements. Please refer to the current edition of the "Internet

Official Protocol Standards" (STD 1) for the standardization state

and status of this protocol. Distribution of this memo is unlimited.

Copyright Notice

Copyright (C) The Internet Society (2004). All Rights Reserved.

Abstract

This document specifies a certificate extension for including

logotypes in public key certificates and attribute certificates.

Santesson, et al. Standards Track [Page 1]

RFC 3709 Logotypes in X.509 Certificates February 2004

Table of Contents

1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 2

1.1. Certificate-based Identification . . . . . . . . . . . . 3

1.2. Selection of Certificates. . . . . . . . . . . . . . . . 4

1.3. Combination of Verification Techniques . . . . . . . . . 5

1.4. Terminology. . . . . . . . . . . . . . . . . . . . . . . 6

2. Different types of logotypes in Certificates . . . . . . . . . 6

3. Logotype Data. . . . . . . . . . . . . . . . . . . . . . . . . 6

4. Logotype Extension . . . . . . . . . . . . . . . . . . . . . . 7

4.1. Extension Format . . . . . . . . . . . . . . . . . . . . 7

4.2. Other Logotypes. . . . . . . . . . . . . . . . . . . . . 11

5. Type of Certificates . . . . . . . . . . . . . . . . . . . . . 12

6. Use in Clients . . . . . . . . . . . . . . . . . . . . . . . . 12

7. Security Considerations. . . . . . . . . . . . . . . . . . . . 13

8. IANA Considerations. . . . . . . . . . . . . . . . . . . . . . 15

9. Acknowledgments. . . . . . . . . . . . . . . . . . . . . . . . 15

10. References . . . . . . . . . . . . . . . . . . . . . . . . . . 16

10.1. Normative References . . . . . . . . . . . . . . . . . . 16

10.2. Informative References . . . . . . . . . . . . . . . . . 16

A. ASN.1 Module . . . . . . . . . . . . . . . . . . . . . . . . . 17

B. Example Extension. . . . . . . . . . . . . . . . . . . . . . . 19

Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 20

Full Copyright Statement . . . . . . . . . . . . . . . . . . . . . 21

1. Introduction

This specification supplements RFC 3280 [PKIX-1], which profiles

X.509 [X.509] certificates and certificate revocation lists (CRLs)

for use in the Internet.

The basic function of a certificate is to bind a public key to the

identity of an entity (the subject). From a strictly technical

viewpoint, this goal could be achieved by signing the identity of the

subject together with its public key. However, the art of Public-Key

Infrastructure (PKI) has developed certificates far beyond this

functionality in order to meet the needs of modern global networks

and heterogeneous I...