[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: ;binary option
At 02:15 AM 2002-05-09, Chris Harding wrote:
>The two IETF ldapbis ;binary design teams have now reported, and it looks as though the conclusion may be to remove ;binary from the specification.
>
>I've just looked through BLITS, and this does not mention the ;binary option. There are many tests that use certificates, but they all give the attiibute type as userCertificate, cACertificate, etc, rather than userCertificate;binary etc. So there would seem to be no impact on BLITS. Whether there is an impact on how far implementations can pass the BLITS tests may be another matter.
>
>I don't personally see any interoperability issues, provided that it is clear that the requirement is always to use the ;binary encoding for certificates etc. (per section 6.5 of RFC 2252) and that RFC 1778 (LDAP v2), which defines a different encoding, is now officially dead. Kurt, this isn't completely clear from your mail - am I right that this is what is intended?
It decision we make in the core technical specification regarding
;binary will have a significant impact on further standardization
of certificate schema and the WG should consider this in making
its decision regarding the removal of ;binary. The WG should
consider other uses of ;binary as well.
It should be obvious that the removal of ;binary protocol element
removes capabilities offered by the core specification. While some
of these capabilities could be subsequently reintroduced as
extensions, some capabilities would be lost. In particular, as the
removal of ;binary would include the deletion of the absolute
imperative:
Clients which request that all attributes be returned from
entries MUST be prepared to receive values in binary [RFC2252].
any extension reintroducing ;binary would have to account for
clients which might not be prepared to receive values in binary
when return of all attributes was requested.
Kurt