Path: utzoo!attcan!utgpu!jarvis.csri.toronto.edu!mailrus!hellgate.utah.edu!helios.ee.lbl.gov!pasteur!ucbvax!hplabs!hp-ses!hpcuhb!hpindda!kmont From: kmont@hpindda.HP.COM (Kevin Montgomery) Newsgroups: comp.protocols.iso Subject: Re: X.500 PICS -draft- no promises. Message-ID: <5560041@hpindda.HP.COM> Date: 27 Sep 89 00:31:49 GMT References: <5560039@hpindda.HP.COM> Organization: Bill and Dave's Lines: 589 .sp 10 .ps +5 .ce X.500 Protocol and Implementation Conformance Specification .ps -4 .sp 1 .ce (conforms to ISO 9594/CCITT X.500 Draft International Standard) .ce (Gloucester, November 1987) .sp 13 .ce Version 1.0 .ce 09/25/89 .sp 15 .ce Kevin Montgomery .ce Information Networks Division .ce Hewlett-Packard Company .sp 15 Note: This PICS is only valid for DIS implementations. .ps -1 .bp 0.0 IMPLEMENTATION Implementation name: Version number/date: System hardware: Version number/date: Operating system: Version number/date: 0.1 IMPLEMENTATION SUPPLIER Name: Address: Contact Name(s): Phone: Fax: Telex: Electronic Mail: 0.2 IMPLEMENTATION OWNER (if different from supplier) Name: Address: Contact Name(s): Phone: Fax: Telex: Electronic Mail: .bp .sp 3 1.0 Directory User Agent Specification 1.1 Directory User Agent Functionality Supported .TS center expand allbox doublebox; l l l l l. Ref # Service Element X.500 ref Originate Constraints 1.1.1 Service Controls X511.7.5 1.1.2 Security Parameters X509.5 Authentication Unprotected Simple With Password Without Password Protected Simple Strong One Way Authentication Two Way Authentication Three Way Authentication Data encipherment 1.1.3 Filters X511.7.8 Nested Filters And Not Or 1.1.4 Read X511.9.1 1.1.5 Compare X511.9.2 1.1.6 List X511.10.1 1.1.7 Search X511.10.2 Base Object Subset Base object One level Whole subtree Search aliases Relative ordering Search on secondary keys 1.1.8 Abandon X511.9.3 1.1.9 Add X511.11.1 1.1.10 Remove X511.11.2 1.1.11 Modify X511.11.3 1.1.12 Modify RDN (move) X511.11.4 1.1.13 Error Information X511.12 1.1.14 Referrals X511.12.6 1.1.15 Aliased Entries X501.6.3 Multiply indirect .TE .bp .ps +1 .sp 1 1.2 Directory Access Protocol Specification .TS center expand allbox doublebox; l l l l l l. Ref # Service Element X.500 ref Orig Rec Constraints 1.2.1 Common Arguments X511.7.3 Sends requestor aliasedRDNs Extensions 1.2.2 Common Results X511.7.4 Security Parameters performer DN 1.2.3 Service Controls X511.7.5 timeLimit sizeLimit scopeOfReferral 1.2.4 Security Parameters X511.7.9 certification path name time random target signed unsigned 1.2.5 Directory Bind Operation X511.8 Credentials unprotected simple password protected simple validity time1 time2 random1 random2 password strong certification-path One Way Authentication Two Way Authentication Three Way Authentication external procedure 1.2.6 Read Port X511.9 Read Signed Arguments Compare Signed Arguments Abandon 1.2.7 Search Port X511.10 List Signed Arguments Search Signed Arguments 1.2.8 Modify Port X511.11 Add Signed Arguments Remove Signed Arguments Modify Signed Arguments Modify RDN (move) Signed Arguments .TE .ps -1 .bp .ps +1 .sp 3 1.3 Attribute Types Requestable (ref: X.520) .TS center expand allbox doublebox; l l l l. Ref # Attribute Type Requestable Constraints 1.3.1 System Object Class Aliased Object Name Knowledge Information 1.3.2 Labelling Common Name Surname Serial Number 1.3.3 Geographical Country Name Locality Name State or Province Name Street Address 1.3.4 Organizational Organization Name Organizational Unit Name Title 1.3.5 Explanatory Description Search Guide Business Category 1.3.6 Postal Addressing Postal Address Postal Code Post Office Box Physical Delivery Office Name 1.3.7 Telecommunications Addressing Telephone Number Telex Number Teletex Terminal Identifier Facsimile Telephone Number X.121 Address International ISDN Number Registered Address Destination Indicator 1.3.8 Preferences Preferred Delivery Method 1.3.9 OSI Applications Presentation Address Supported Application Context 1.3.10 Relational Member Owner Role Occupant See Also 1.3.11 Security User Password User Certificate CA Certificate Authority Revocation List Certificate Revocation List Cross Certificate Pair .TE .ps -1 .bp .sp 3 1.4 Attribute Syntaxes Requestable (ref: X.520) .TS center expand allbox doublebox; l l l l. Ref # Attribute Syntaxes Requestable Constraints 1.4.1 Used by the Directory Undefined Distinguished Name Object Identifier 1.4.2 String Attribute Syntaxes Case Exact String Case Ignore String Printable String Numeric String Case Ignore List 1.4.3 Miscellaneous Boolean Integer Octet String UTC Time Telephone Number .TE .sp 3 1.5 Attribute Sets Requestable (ref X.521) .TS center expand allbox doublebox; l l l l. Ref # Attribute Sets Requestable Constraints 1.5.1 Telecommunication 1.5.2 Postal 1.5.3 Locale 1.5.4 Organizational .TE .sp 3 1.6 Object Classes Requestable (ref X.521) .TS center expand allbox doublebox; l l l l. Ref # Object Classes Requestable Constraints 1.6.1 Top 1.6.2 Alias 1.6.3 Country 1.6.4 Locality 1.6.5 Organization 1.6.6 Organizational Unit 1.6.7 Person 1.6.8 Organizational Person 1.6.9 Organizational Role 1.6.10 Group of Names 1.6.11 Residential Person 1.6.12 Application Process 1.6.13 Application Entity 1.6.14 DSA 1.6.15 Device 1.6.16 Strong Authentication User 1.6.17 Certification Authority .TE .bp .sp 3 1.7 Proprietary Enhancements to DUA .bp .sp 3 2.0 Directory System Agent Specification 2.1 Directory Access Protocol Functionality Supported .TS center expand allbox doublebox; l l l l l. Ref # Service Element X.500 ref Receive Constraints 2.1.1 Service Controls X511.7.5 2.1.2 Security Parameters X509.5 Authentication Unprotected Simple With Password Without Password Protected Simple Strong One Way Authentication Two Way Authentication Three Way Authentication Data encipherment 2.1.3 Filters X511.7.8 Nested Filters And Not Or 2.1.4 Read X511.9.1 2.1.5 Compare X511.9.2 2.1.6 List X511.10.1 2.1.7 Search X511.10.2 Base Object Subset Base object One level Whole subtree Search aliases Relative ordering Search on secondary keys 2.1.8 Abandon X511.9.3 2.1.9 Add X511.11.1 2.1.10 Remove X511.11.2 2.1.11 Modify X511.11.3 2.1.12 Modify RDN (move) X511.11.4 2.1.13 Error Information X511.12 2.1.14 Referrals X511.12.6 2.1.15 Aliased Entries X501.6.3 Multiply indirect .TE .bp .sp 1 .ps +1 2.2 Directory Access Protocol Supported .TS center expand allbox doublebox; l l l l l l. Ref # Service Element X.500 ref Orig Rec Constraints 2.2.1 Common Arguments X511.7.3 Sends requestor aliasedRDNs Extensions 2.2.2 Common Results X511.7.4 Security Parameters performer DN 2.2.3 Service Controls X511.7.5 timeLimit sizeLimit scopeOfReferral 2.2.4 Security Parameters X511.7.9 certification path name time random target signed unsigned 2.2.5 Directory Bind Operation X511.8 Credentials unprotected simple password protected simple validity time1 time2 random1 random2 password strong certification-path One Way Authentication Two Way Authentication Three Way Authentication external procedure 2.2.6 Read Port X511.9 Read Signed Arguments Compare Signed Arguments Abandon 2.2.7 Search Port X511.10 List Signed Arguments Search Signed Arguments 2.2.8 Modify Port X511.11 Add Signed Arguments Remove Signed Arguments Modify Signed Arguments Modify RDN (move) Signed Arguments .TE .ps -1 .bp .sp 3 2.3 Directory System Protocol Functionality Supported2.4 Directory System Protocol Protocol Supported .bp .ps +1 .sp 3 2.5 Attribute Types Supported (ref: X.520) .TS center expand allbox doublebox; l l l l. Ref # Attribute Type Supported Constraints 2.5.1 System Object Class Aliased Object Name Knowledge Information 2.5.2 Labelling Common Name Surname Serial Number 2.5.3 Geographical Country Name Locality Name State or Province Name Street Address 2.5.4 Organizational Organization Name Organizational Unit Name Title 2.5.5 Explanatory Description Search Guide Business Category 2.5.6 Postal Addressing Postal Address Postal Code Post Office Box Physical Delivery Office Name 2.5.7 Telecommunications Addressing Telephone Number Telex Number Teletex Terminal Identifier Facsimile Telephone Number X.121 Address International ISDN Number Registered Address Destination Indicator 2.5.8 Preferences Preferred Delivery Method 2.5.9 OSI Applications Presentation Address Supported Application Context 2.5.10 Relational Member Owner Role Occupant See Also 2.5.11 Security User Password User Certificate CA Certificate Authority Revocation List Certificate Revocation List Cross Certificate Pair .TE .ps -1 .bp .sp 3 2.6 Attribute Syntaxes Supported (ref: X.520) .TS center expand allbox doublebox; l l l l. Ref # Attribute Syntaxes Supported Constraints 2.6.1 Used by the Directory Undefined Distinguished Name Object Identifier 2.6.2 String Attribute Syntaxes Case Exact String Case Ignore String Printable String Numeric String Case Ignore List 2.6.3 Miscellaneous Boolean Integer Octet String UTC Time Telephone Number .TE .sp 3 2.7 Attribute Sets Supported (ref X.521) .TS center expand allbox doublebox; l l l l. Ref # Attribute Sets Supported Constraints 2.7.1 Telecommunication 2.7.2 Postal 2.7.3 Locale 2.7.4 Organizational .TE .sp 3 2.8 Object Classes Supported (ref X.521) .TS center expand allbox doublebox; l l l l. Ref # Object Classes Supported Constraints 2.8.1 Top 2.8.2 Alias 2.8.3 Country 2.8.4 Locality 2.8.5 Organization 2.8.6 Organizational Unit 2.8.7 Person 2.8.8 Organizational Person 2.8.9 Organizational Role 2.8.10 Group of Names 2.8.11 Residential Person 2.8.12 Application Process 2.8.13 Application Entity 2.8.14 DSA 2.8.15 Device 2.8.16 Strong Authentication User 2.8.17 Certification Authority .TE .bp .sp 3 2.9 Proprietary Enhancements to DSA