< draft-ietf-pkix-logotypes-12.txt   draft-ietf-pkix-logotypes-13.txt >
PKIX Working Group S. Santesson (Microsoft) PKIX Working Group S. Santesson (Microsoft)
INTERNET-DRAFT R. Housley (Vigil Security) INTERNET-DRAFT R. Housley (Vigil Security)
Expires April 2004 T. Freeman (Microsoft) Expires June 2004 T. Freeman (Microsoft)
October 2003 December 2003
Internet X.509 Public Key Infrastructure: Internet X.509 Public Key Infrastructure:
Logotypes in X.509 certificates Logotypes in X.509 certificates
<draft-ietf-pkix-logotypes-12.txt> <draft-ietf-pkix-logotypes-13.txt>
Status of this Memo Status of this Memo
This document is an Internet-Draft and is in full conformance with This document is an Internet-Draft and is in full conformance with
all provisions of Section 10 of RFC2026. all provisions of Section 10 of RFC2026.
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that other Task Force (IETF), its areas, and its working groups. Note that other
groups may also distribute working documents as Internet-Drafts. groups may also distribute working documents as Internet-Drafts.
skipping to change at page 9, line 19 skipping to change at page 9, line 19
LogotypeImage ::= SEQUENCE { LogotypeImage ::= SEQUENCE {
imageDetails LogotypeDetails, imageDetails LogotypeDetails,
imageInfo LogotypeImageInfo OPTIONAL } imageInfo LogotypeImageInfo OPTIONAL }
LogotypeAudio ::= SEQUENCE { LogotypeAudio ::= SEQUENCE {
audioDetails LogotypeDetails, audioDetails LogotypeDetails,
audioInfo LogotypeAudioInfo OPTIONAL } audioInfo LogotypeAudioInfo OPTIONAL }
LogotypeDetails ::= SEQUENCE { LogotypeDetails ::= SEQUENCE {
mediaSubType IA5String, -- MIME image or audio subtype mediaType IA5String, -- MIME media type name and optional
-- parameters
logotypeHash SEQUENCE SIZE (1..MAX) OF HashAlgAndValue, logotypeHash SEQUENCE SIZE (1..MAX) OF HashAlgAndValue,
logotypeURI SEQUENCE SIZE (1..MAX) OF IA5String } logotypeURI SEQUENCE SIZE (1..MAX) OF IA5String }
LogotypeImageInfo ::= SEQUENCE { LogotypeImageInfo ::= SEQUENCE {
type [0] LogotypeImageType DEFAULT color, type [0] LogotypeImageType DEFAULT color,
fileSize INTEGER, -- In octets fileSize INTEGER, -- In octets
xSize INTEGER, -- Horizontal size in pixels xSize INTEGER, -- Horizontal size in pixels
ySize INTEGER, -- Vertical size in pixels ySize INTEGER, -- Vertical size in pixels
resolution LogotypeImageResolution OPTIONAL, resolution LogotypeImageResolution OPTIONAL,
language [4] IA5String OPTIONAL } -- RFC 3066 Language Tag language [4] IA5String OPTIONAL } -- RFC 3066 Language Tag
skipping to change at page 15, line 17 skipping to change at page 15, line 20
Since there is no technical mechanism to prevent or control Since there is no technical mechanism to prevent or control
subordinate CAs from including the logotype extension or its subordinate CAs from including the logotype extension or its
contents, where appropriate, a parent CA could employ a legal contents, where appropriate, a parent CA could employ a legal
agreement to impose a suitable restriction on the subordinate CA. agreement to impose a suitable restriction on the subordinate CA.
This situation is not unique to the logotype extension. This situation is not unique to the logotype extension.
The controls available to a parent CA to protect itself from rogue The controls available to a parent CA to protect itself from rogue
subordinate CAs are non-technical. They include: subordinate CAs are non-technical. They include:
- Contractual agreements of suitable behavior, including - Contractual agreements of suitable behavior, including
terms of liability in case of material terms of liability in case of material breach.
breach.
- Control mechanisms and procedures to monitor and - Control mechanisms and procedures to monitor and
follow-up behavior of subordinate CAs. follow-up behavior of subordinate CAs.
- Use of certificate policies to declare assurance level - Use of certificate policies to declare assurance level
of logotype data as well as to guide applications on how of logotype data as well as to guide applications on how
to treat and display logotypes. to treat and display logotypes.
- Use of revocation functions to revoke any misbehaving CA. - Use of revocation functions to revoke any misbehaving CA.
skipping to change at page 19, line 6 skipping to change at page 19, line 6
LogotypeImage ::= SEQUENCE { LogotypeImage ::= SEQUENCE {
imageDetails LogotypeDetails, imageDetails LogotypeDetails,
imageInfo LogotypeImageInfo OPTIONAL } imageInfo LogotypeImageInfo OPTIONAL }
LogotypeAudio ::= SEQUENCE { LogotypeAudio ::= SEQUENCE {
audioDetails LogotypeDetails, audioDetails LogotypeDetails,
audioInfo LogotypeAudioInfo OPTIONAL } audioInfo LogotypeAudioInfo OPTIONAL }
LogotypeDetails ::= SEQUENCE { LogotypeDetails ::= SEQUENCE {
mediaSubType IA5String, -- MIME image or audio subtype mediaType IA5String, -- MIME media type name and optional
-- parameters
logotypeHash SEQUENCE SIZE (1..MAX) OF HashAlgAndValue, logotypeHash SEQUENCE SIZE (1..MAX) OF HashAlgAndValue,
logotypeURI SEQUENCE SIZE (1..MAX) OF IA5String } logotypeURI SEQUENCE SIZE (1..MAX) OF IA5String }
LogotypeImageInfo ::= SEQUENCE { LogotypeImageInfo ::= SEQUENCE {
type [0] LogotypeImageType DEFAULT color, type [0] LogotypeImageType DEFAULT color,
fileSize INTEGER, -- In octets fileSize INTEGER, -- In octets
xSize INTEGER, -- Horizontal size in pixels xSize INTEGER, -- Horizontal size in pixels
ySize INTEGER, -- Vertical size in pixels ySize INTEGER, -- Vertical size in pixels
resolution LogotypeImageResolution OPTIONAL, resolution LogotypeImageResolution OPTIONAL,
language [4] IA5String OPTIONAL } -- RFC 3066 Language Tag language [4] IA5String OPTIONAL } -- RFC 3066 Language Tag
 End of changes. 5 change blocks. 
7 lines changed or deleted 8 lines changed or added

This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/