>Some people will argue strongly that unless the Subjects match >identically, it's impossible for a relying party to treat them as >referring to one principal. I don't share that view, I think that's >something that can be defined by the protocol as a whole.
+1. An identifier is semantically a special purpose attribute statement. It's reasonable (and often desirable) for different issuers to know the same subject by different identifiers. That may not be convenient for relying parties where identifier equivalence is clearly convenient; but if it causes problems they can fix it at the business level. Josh. JANET(UK) is a trading name of The JNT Association, a company limited by guarantee which is registered in England under No. 2881024 and whose Registered Office is at Lumen House, Library Avenue, Harwell Oxford, Didcot, Oxfordshire. OX11 0SG _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
