View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
000999010000-012: DiscoverySpecpublic2024-10-22 12:002024-10-22 12:01
ReporterMatthias Damm Assigned To 
PrioritynormalSeverityminorReproducibilityhave not tried
Status newResolutionopen 
Product Version1.05.04 
Target Version1.05.05 RC1 
Summary0009990: Inconsistent SubjectName requirements in Part 12 and Part 6
Description

There are inconsistent requirements for SubjectName in an Application Instance Certificate in Part 6 and Part 12

Part 6
Table 49 – Application Instance Certificate
subject requires CN and O (CommonName and Organization)
The Common Name attribute shall be specified and should be the productName or a suitable equivalent. The Organization Name attribute shall be the name of the Organization that executes the application instance. This organization is usually not the vendor of the application

Part 12
7.9.4 StartNewKeyPairRequest
Requires O or DC
If the certificateType is a subtype of ApplicationCertificateType the Certificate subject shall have an organization (O=) or domain name (DC=) field. The public key length shall meet the length restrictions for the CertificateType. The domain name field specified in the subject is a logical domain used to qualify the subject that may or may not be the same as a domain or IP address in the subjectAltName field of the Certificate.

I am not even sure where the strange text for DC is coming from and what use case it should cover

TagsNo tags attached.
Commit Version
Fix Due Date

Relationships

related to 0009989 new 10000-006: Mappings Application Instance Certificate requirement for subject name should not refer to ProductName 

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2024-10-22 12:00 Matthias Damm New Issue
2024-10-22 12:01 Matthias Damm Relationship added related to 0009989