![[Go to /]](/ic-100x43.png){kind=small}
Structures
Membership
Contact us
IGTFAPGridPMA
TAGPMA
TERENA TACAR
Documents
Charter
Guidelines
One Statement Policies
CAOPS-WG
Wiki
Technical Info
CA Distribution download
Subject Locator
Find your local CA
Newsletter issues
Subscribe
Service notices
Nagios monitoring
Tools download and fetch-crl
Technical documentation
IGTF OID Registry
Meetings
Zurich, May 11-13, 2009
Overview
Agendas
Intranet and Reviews
Joining?
Authorisation Operations WG
switch to print layout
EUGridPMA Technical Documents
- Namespace constraints file format and semantics
(Adobe PDF)
(MS Word)
This document describes the format and parsing rules for the namespaces file as shipped with the EUGridPMA and IGTF distributions of the accredited authorities. It augments the existing signing_policy scheme for relying-party defined name constraints on the valid subject identifiers from trusted identity providers.
This document describes the specific expression of this namespace constraints policy as a policy file stored in a file system, and on the processing and interpretation semantics of the policy file by compliant software implementations.
Related links:
- Releases from 1.1 up contain the namespaces files
- EACL signing_policy file format
This document describes the signing_policy file format used by the Globus Toolkit "OLD-GAA" API to restrict the subject signing namespace.
Note that due to implementation limitations in all Globus Toolkit versions, the EUGridPMA and IGTF only use positive rights EACL rules.
-
OID for Proxy Delegation Tracing
This document defines the OID allocation from the IGTF used for experimental proxy certificate delegation tracing. It assigns OID arc 1.2.840.113612.5.5.1.1.1 for the use of identifying attributes in RFC 3820 proxy certificates that facilitate the tracing of delegations in a proxy certificate chain.