Well
- RFC 3281 An Internet Attribute Certificate Profile for
Authorization.IETF PKIX Working Group, April 2002
- RFC 2904: AAA Authorization Framework", August 2000
- ITU-T RECOMMENDATION X.509 ¨INFORMATION TECHNOLOGY – OPEN SYSTEMS INTERCONNECTION –THE DIRECTORY: PUBLIC-KEY AND ATTRIBUTE CERTIFICATE FRAMEWORKS¨ MAch 2000
PMI is Privilege Management Infrastructure, similar to PKI but with AC
AC Attribute Certificate. AA Attribute Authority , similar to CA
OAA Operator Attribute Authority, similar to RA but whit AC
SOA Source of Authorisation (SOA) (Root AA)
Now I understand. OpenSSL does not implement attribute certificates because there are no applications/users today. So looks for me like the major job is to implement a patch for OpenSSL which adds support of attribute certificates to the toolkit.
Michael -- _______________________________________________________________
Michael Bell Humboldt-Universitaet zu Berlin
Tel.: +49 (0)30-2093 2482 ZE Computer- und Medienservice Fax: +49 (0)30-2093 2704 Unter den Linden 6 [EMAIL PROTECTED] D-10099 Berlin _______________________________________________________________
------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ _______________________________________________ OpenCA-Devel mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-devel
