kmont@hpindda.HP.COM (Kevin Montgomery) (09/27/89)
After this basenote are my drafts of an X.500 PICS for
interoperability testing. THERE IS NO ISO BASIS TO THIS DOCUMENT
WHATSOEVER! I just needed one myself and cooked one up. I've sent
a copy to the "actionee" for coming up with a draft in the hopes
that it'll make his job a little easier. If you have no immediate
need for a PICS, I'd suggest that you wait until after the Halloween
set of meetings to get a more concrete copy from the appropriate
standards bodies. Again, neither I nor HP implies any warrantees
or accepts any liabilities for this document. It was a random
pattern that occurred on my disc and I thought it was cute, so
I posted it. so there. nyah. :-)
kevin
Ps: this is a tbl and troff format file. To produce a document
on a unix machine, save the message in a file, then issue
the command sequence "tbl <file> | troff", where <file> is
the filename under which you saved the document.
Pps: if you need non-troff/tbl-ed copies or have any other problems,
send mail to me at 'kmont%hpda@hplabs.hp.com"kmont@hpindda.HP.COM (Kevin Montgomery) (09/27/89)
.sp 10
.ps +5
.ce
X.500 Protocol and Implementation Conformance Specification
.ps -4
.sp 1
.ce
(conforms to ISO 9594/CCITT X.500 International Standard)
.sp 15
.ce
Version 1.0
.ce
09/25/89
.sp 15
.ce
Kevin Montgomery
.ce
Information Networks Division
.ce
Hewlett-Packard Company
.sp 15
Note: This PICS is only valid for IS implementations.
.ps -1
.bp
0.0 IMPLEMENTATION
Implementation name:
Version number/date:
System hardware:
Version number/date:
Operating system:
Version number/date:
0.1 IMPLEMENTATION SUPPLIER
Name:
Address:
Contact Name(s):
Phone:
Fax:
Telex:
Electronic Mail:
0.2 IMPLEMENTATION OWNER (if different from supplier)
Name:
Address:
Contact Name(s):
Phone:
Fax:
Telex:
Electronic Mail:
.bp
.sp 3
1.0 Directory User Agent Specification
1.1 Directory User Agent Functionality Supported
.TS
center expand allbox doublebox;
l l l l l.
Ref # Service Element X.500 ref Originate Constraints
1.1.1 Service Controls X511.7.5
1.1.2 Security Parameters X509.5
Authentication
Simple
With Password
Without Password
Strong
One Way Authentication
Two Way Authentication
Three Way Authentication
Data encipherment
1.1.3 Filters X511.7.8
Nested Filters
And
Not
Or
1.1.4 Read X511.9.1
1.1.5 Compare X511.9.2
1.1.6 List X511.10.1
1.1.7 Search X511.10.2
Base Object
Subset
Base object
One level
Whole subtree
Search aliases
Relative ordering
Search on secondary keys
1.1.8 Abandon X511.9.3
1.1.9 Add X511.11.1
1.1.10 Remove X511.11.2
1.1.11 Modify X511.11.3
1.1.12 Modify RDN (move) X511.11.4
1.1.13 Error Information X511.12
1.1.14 Referrals X511.12.6
1.1.15 Aliased Entries X501.6.3
Multiply indirect
.TE
.bp
.ps +1
.sp 2
1.2 Directory Access Protocol Specification
.TS
center expand allbox doublebox;
l l l l l l.
Ref # Service Element X.500 ref Orig Rec Constraints
1.2.1 Common Arguments X511.7.3
Sends requestor
aliasedRDNs
Extensions
1.2.2 Common Results X511.7.4
Security Parameters
performer DN
1.2.3 Service Controls X511.7.5
timeLimit
sizeLimit
scopeOfReferral
1.2.4 Security Parameters X511.7.9
certification path
name
time
random
target
signed
unsigned
1.2.5 Directory Bind Operation X511.8
Credentials
simple
validity
time1
time2
random1
random2
password
strong
certification-path
One Way Authentication
Two Way Authentication
Three Way Authentication
external procedure
1.2.6 Read Port X511.9
Read
Signed Arguments
Compare
Signed Arguments
Abandon
1.2.7 Search Port X511.10
List
Signed Arguments
Search
Signed Arguments
1.2.8 Modify Port X511.11
Add
Signed Arguments
Remove
Signed Arguments
Modify
Signed Arguments
Modify RDN (move)
Signed Arguments
.TE
.ps -1
.bp
.ps +1
.sp 3
1.3 Attribute Types Requestable (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Type Requestable Constraints
1.3.1 System
Object Class
Aliased Object Name
Knowledge Information
1.3.2 Labelling
Common Name
Surname
Serial Number
1.3.3 Geographical
Country Name
Locality Name
State or Province Name
Street Address
1.3.4 Organizational
Organization Name
Organizational Unit Name
Title
1.3.5 Explanatory
Description
Search Guide
Business Category
1.3.6 Postal Addressing
Postal Address
Postal Code
Post Office Box
Physical Delivery Office Name
1.3.7 Telecommunications Addressing
Telephone Number
Telex Number
Teletex Terminal Identifier
Facsimile Telephone Number
X.121 Address
International ISDN Number
Registered Address
Destination Indicator
1.3.8 Preferences
Preferred Delivery Method
1.3.9 OSI Applications
Presentation Address
Supported Application Context
1.3.10 Relational
Member
Owner
Role Occupant
See Also
1.3.11 Security
User Password
User Certificate
CA Certificate
Authority Revocation List
Certificate Revocation List
Cross Certificate Pair
.TE
.ps -1
.bp
.sp 3
1.4 Attribute Syntaxes Requestable (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Syntaxes Requestable Constraints
1.4.1 Used by the Directory
Undefined
Distinguished Name
Object Identifier
1.4.2 String Attribute Syntaxes
Case Exact String
Case Ignore String
Printable String
Numeric String
Case Ignore List
1.4.3 Miscellaneous
Boolean
Integer
Octet String
UTC Time
Telephone Number
.TE
.sp 3
1.5 Attribute Sets Requestable (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Sets Requestable Constraints
1.5.1 Telecommunication
1.5.2 Postal
1.5.3 Locale
1.5.4 Organizational
.TE
.sp 3
1.6 Object Classes Requestable (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Object Classes Requestable Constraints
1.6.1 Top
1.6.2 Alias
1.6.3 Country
1.6.4 Locality
1.6.5 Organization
1.6.6 Organizational Unit
1.6.7 Person
1.6.8 Organizational Person
1.6.9 Organizational Role
1.6.10 Group of Names
1.6.11 Residential Person
1.6.12 Application Process
1.6.13 Application Entity
1.6.14 DSA
1.6.15 Device
1.6.16 Strong Authentication User
1.6.17 Certification Authority
.TE
.bp
.sp 3
1.7 Proprietary Enhancements to DUA
.bp
.sp 3
2.0 Directory System Agent Specification
2.1 Directory Access Protocol Functionality Supported
.TS
center expand allbox doublebox;
l l l l l.
Ref # Service Element X.500 ref Receive Constraints
2.1.1 Service Controls X511.7.5
2.1.2 Security Parameters X509.5
Authentication
Simple
With Password
Without Password
Strong
One Way Authentication
Two Way Authentication
Three Way Authentication
Data encipherment
2.1.3 Filters X511.7.8
Nested Filters
And
Not
Or
2.1.4 Read X511.9.1
2.1.5 Compare X511.9.2
2.1.6 List X511.10.1
2.1.7 Search X511.10.2
Base Object
Subset
Base object
One level
Whole subtree
Search aliases
Relative ordering
Search on secondary keys
2.1.8 Abandon X511.9.3
2.1.9 Add X511.11.1
2.1.10 Remove X511.11.2
2.1.11 Modify X511.11.3
2.1.12 Modify RDN (move) X511.11.4
2.1.13 Error Information X511.12
2.1.14 Referrals X511.12.6
2.1.15 Aliased Entries X501.6.3
Multiply indirect
.TE
.bp
.sp 2
.ps +1
2.2 Directory Access Protocol Supported
.TS
center expand allbox doublebox;
l l l l l l.
Ref # Service Element X.500 ref Orig Rec Constraints
2.2.1 Common Arguments X511.7.3
Sends requestor
aliasedRDNs
Extensions
2.2.2 Common Results X511.7.4
Security Parameters
performer DN
2.2.3 Service Controls X511.7.5
timeLimit
sizeLimit
scopeOfReferral
2.2.4 Security Parameters X511.7.9
certification path
name
time
random
target
signed
unsigned
2.2.5 Directory Bind Operation X511.8
Credentials
simple
validity
time1
time2
random1
random2
password
strong
certification-path
One Way Authentication
Two Way Authentication
Three Way Authentication
external procedure
2.2.6 Read Port X511.9
Read
Signed Arguments
Compare
Signed Arguments
Abandon
2.2.7 Search Port X511.10
List
Signed Arguments
Search
Signed Arguments
2.2.8 Modify Port X511.11
Add
Signed Arguments
Remove
Signed Arguments
Modify
Signed Arguments
Modify RDN (move)
Signed Arguments
.TE
.ps -1
.bp
.sp 3
2.3 Directory System Protocol Functionality Supported
<yet to be done>
2.4 Directory System Protocol Protocol Supported
<yet to be done>
.bp
.ps +1
.sp 3
2.5 Attribute Types Supported (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Type Supported Constraints
2.5.1 System
Object Class
Aliased Object Name
Knowledge Information
2.5.2 Labelling
Common Name
Surname
Serial Number
2.5.3 Geographical
Country Name
Locality Name
State or Province Name
Street Address
2.5.4 Organizational
Organization Name
Organizational Unit Name
Title
2.5.5 Explanatory
Description
Search Guide
Business Category
2.5.6 Postal Addressing
Postal Address
Postal Code
Post Office Box
Physical Delivery Office Name
2.5.7 Telecommunications Addressing
Telephone Number
Telex Number
Teletex Terminal Identifier
Facsimile Telephone Number
X.121 Address
International ISDN Number
Registered Address
Destination Indicator
2.5.8 Preferences
Preferred Delivery Method
2.5.9 OSI Applications
Presentation Address
Supported Application Context
2.5.10 Relational
Member
Owner
Role Occupant
See Also
2.5.11 Security
User Password
User Certificate
CA Certificate
Authority Revocation List
Certificate Revocation List
Cross Certificate Pair
.TE
.ps -1
.bp
.sp 3
2.6 Attribute Syntaxes Supported (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Syntaxes Supported Constraints
2.6.1 Used by the Directory
Undefined
Distinguished Name
Object Identifier
2.6.2 String Attribute Syntaxes
Case Exact String
Case Ignore String
Printable String
Numeric String
Case Ignore List
2.6.3 Miscellaneous
Boolean
Integer
Octet String
UTC Time
Telephone Number
.TE
.sp 3
2.7 Attribute Sets Supported (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Sets Supported Constraints
2.7.1 Telecommunication
2.7.2 Postal
2.7.3 Locale
2.7.4 Organizational
.TE
.sp 3
2.8 Object Classes Supported (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Object Classes Supported Constraints
2.8.1 Top
2.8.2 Alias
2.8.3 Country
2.8.4 Locality
2.8.5 Organization
2.8.6 Organizational Unit
2.8.7 Person
2.8.8 Organizational Person
2.8.9 Organizational Role
2.8.10 Group of Names
2.8.11 Residential Person
2.8.12 Application Process
2.8.13 Application Entity
2.8.14 DSA
2.8.15 Device
2.8.16 Strong Authentication User
2.8.17 Certification Authority
.TE
.bp
.sp 3
2.9 Proprietary Enhancements to DSAkmont@hpindda.HP.COM (Kevin Montgomery) (09/27/89)
.sp 10
.ps +5
.ce
X.500 Protocol and Implementation Conformance Specification
.ps -4
.sp 1
.ce
(conforms to ISO 9594/CCITT X.500 Draft International Standard)
.ce
(Gloucester, November 1987)
.sp 13
.ce
Version 1.0
.ce
09/25/89
.sp 15
.ce
Kevin Montgomery
.ce
Information Networks Division
.ce
Hewlett-Packard Company
.sp 15
Note: This PICS is only valid for DIS implementations.
.ps -1
.bp
0.0 IMPLEMENTATION
Implementation name:
Version number/date:
System hardware:
Version number/date:
Operating system:
Version number/date:
0.1 IMPLEMENTATION SUPPLIER
Name:
Address:
Contact Name(s):
Phone:
Fax:
Telex:
Electronic Mail:
0.2 IMPLEMENTATION OWNER (if different from supplier)
Name:
Address:
Contact Name(s):
Phone:
Fax:
Telex:
Electronic Mail:
.bp
.sp 3
1.0 Directory User Agent Specification
1.1 Directory User Agent Functionality Supported
.TS
center expand allbox doublebox;
l l l l l.
Ref # Service Element X.500 ref Originate Constraints
1.1.1 Service Controls X511.7.5
1.1.2 Security Parameters X509.5
Authentication
Unprotected Simple
With Password
Without Password
Protected Simple
Strong
One Way Authentication
Two Way Authentication
Three Way Authentication
Data encipherment
1.1.3 Filters X511.7.8
Nested Filters
And
Not
Or
1.1.4 Read X511.9.1
1.1.5 Compare X511.9.2
1.1.6 List X511.10.1
1.1.7 Search X511.10.2
Base Object
Subset
Base object
One level
Whole subtree
Search aliases
Relative ordering
Search on secondary keys
1.1.8 Abandon X511.9.3
1.1.9 Add X511.11.1
1.1.10 Remove X511.11.2
1.1.11 Modify X511.11.3
1.1.12 Modify RDN (move) X511.11.4
1.1.13 Error Information X511.12
1.1.14 Referrals X511.12.6
1.1.15 Aliased Entries X501.6.3
Multiply indirect
.TE
.bp
.ps +1
.sp 1
1.2 Directory Access Protocol Specification
.TS
center expand allbox doublebox;
l l l l l l.
Ref # Service Element X.500 ref Orig Rec Constraints
1.2.1 Common Arguments X511.7.3
Sends requestor
aliasedRDNs
Extensions
1.2.2 Common Results X511.7.4
Security Parameters
performer DN
1.2.3 Service Controls X511.7.5
timeLimit
sizeLimit
scopeOfReferral
1.2.4 Security Parameters X511.7.9
certification path
name
time
random
target
signed
unsigned
1.2.5 Directory Bind Operation X511.8
Credentials
unprotected simple
password
protected simple
validity
time1
time2
random1
random2
password
strong
certification-path
One Way Authentication
Two Way Authentication
Three Way Authentication
external procedure
1.2.6 Read Port X511.9
Read
Signed Arguments
Compare
Signed Arguments
Abandon
1.2.7 Search Port X511.10
List
Signed Arguments
Search
Signed Arguments
1.2.8 Modify Port X511.11
Add
Signed Arguments
Remove
Signed Arguments
Modify
Signed Arguments
Modify RDN (move)
Signed Arguments
.TE
.ps -1
.bp
.ps +1
.sp 3
1.3 Attribute Types Requestable (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Type Requestable Constraints
1.3.1 System
Object Class
Aliased Object Name
Knowledge Information
1.3.2 Labelling
Common Name
Surname
Serial Number
1.3.3 Geographical
Country Name
Locality Name
State or Province Name
Street Address
1.3.4 Organizational
Organization Name
Organizational Unit Name
Title
1.3.5 Explanatory
Description
Search Guide
Business Category
1.3.6 Postal Addressing
Postal Address
Postal Code
Post Office Box
Physical Delivery Office Name
1.3.7 Telecommunications Addressing
Telephone Number
Telex Number
Teletex Terminal Identifier
Facsimile Telephone Number
X.121 Address
International ISDN Number
Registered Address
Destination Indicator
1.3.8 Preferences
Preferred Delivery Method
1.3.9 OSI Applications
Presentation Address
Supported Application Context
1.3.10 Relational
Member
Owner
Role Occupant
See Also
1.3.11 Security
User Password
User Certificate
CA Certificate
Authority Revocation List
Certificate Revocation List
Cross Certificate Pair
.TE
.ps -1
.bp
.sp 3
1.4 Attribute Syntaxes Requestable (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Syntaxes Requestable Constraints
1.4.1 Used by the Directory
Undefined
Distinguished Name
Object Identifier
1.4.2 String Attribute Syntaxes
Case Exact String
Case Ignore String
Printable String
Numeric String
Case Ignore List
1.4.3 Miscellaneous
Boolean
Integer
Octet String
UTC Time
Telephone Number
.TE
.sp 3
1.5 Attribute Sets Requestable (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Sets Requestable Constraints
1.5.1 Telecommunication
1.5.2 Postal
1.5.3 Locale
1.5.4 Organizational
.TE
.sp 3
1.6 Object Classes Requestable (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Object Classes Requestable Constraints
1.6.1 Top
1.6.2 Alias
1.6.3 Country
1.6.4 Locality
1.6.5 Organization
1.6.6 Organizational Unit
1.6.7 Person
1.6.8 Organizational Person
1.6.9 Organizational Role
1.6.10 Group of Names
1.6.11 Residential Person
1.6.12 Application Process
1.6.13 Application Entity
1.6.14 DSA
1.6.15 Device
1.6.16 Strong Authentication User
1.6.17 Certification Authority
.TE
.bp
.sp 3
1.7 Proprietary Enhancements to DUA
.bp
.sp 3
2.0 Directory System Agent Specification
2.1 Directory Access Protocol Functionality Supported
.TS
center expand allbox doublebox;
l l l l l.
Ref # Service Element X.500 ref Receive Constraints
2.1.1 Service Controls X511.7.5
2.1.2 Security Parameters X509.5
Authentication
Unprotected Simple
With Password
Without Password
Protected Simple
Strong
One Way Authentication
Two Way Authentication
Three Way Authentication
Data encipherment
2.1.3 Filters X511.7.8
Nested Filters
And
Not
Or
2.1.4 Read X511.9.1
2.1.5 Compare X511.9.2
2.1.6 List X511.10.1
2.1.7 Search X511.10.2
Base Object
Subset
Base object
One level
Whole subtree
Search aliases
Relative ordering
Search on secondary keys
2.1.8 Abandon X511.9.3
2.1.9 Add X511.11.1
2.1.10 Remove X511.11.2
2.1.11 Modify X511.11.3
2.1.12 Modify RDN (move) X511.11.4
2.1.13 Error Information X511.12
2.1.14 Referrals X511.12.6
2.1.15 Aliased Entries X501.6.3
Multiply indirect
.TE
.bp
.sp 1
.ps +1
2.2 Directory Access Protocol Supported
.TS
center expand allbox doublebox;
l l l l l l.
Ref # Service Element X.500 ref Orig Rec Constraints
2.2.1 Common Arguments X511.7.3
Sends requestor
aliasedRDNs
Extensions
2.2.2 Common Results X511.7.4
Security Parameters
performer DN
2.2.3 Service Controls X511.7.5
timeLimit
sizeLimit
scopeOfReferral
2.2.4 Security Parameters X511.7.9
certification path
name
time
random
target
signed
unsigned
2.2.5 Directory Bind Operation X511.8
Credentials
unprotected simple
password
protected simple
validity
time1
time2
random1
random2
password
strong
certification-path
One Way Authentication
Two Way Authentication
Three Way Authentication
external procedure
2.2.6 Read Port X511.9
Read
Signed Arguments
Compare
Signed Arguments
Abandon
2.2.7 Search Port X511.10
List
Signed Arguments
Search
Signed Arguments
2.2.8 Modify Port X511.11
Add
Signed Arguments
Remove
Signed Arguments
Modify
Signed Arguments
Modify RDN (move)
Signed Arguments
.TE
.ps -1
.bp
.sp 3
2.3 Directory System Protocol Functionality Supported
<yet to be done>
2.4 Directory System Protocol Protocol Supported
<yet to be done>
.bp
.ps +1
.sp 3
2.5 Attribute Types Supported (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Type Supported Constraints
2.5.1 System
Object Class
Aliased Object Name
Knowledge Information
2.5.2 Labelling
Common Name
Surname
Serial Number
2.5.3 Geographical
Country Name
Locality Name
State or Province Name
Street Address
2.5.4 Organizational
Organization Name
Organizational Unit Name
Title
2.5.5 Explanatory
Description
Search Guide
Business Category
2.5.6 Postal Addressing
Postal Address
Postal Code
Post Office Box
Physical Delivery Office Name
2.5.7 Telecommunications Addressing
Telephone Number
Telex Number
Teletex Terminal Identifier
Facsimile Telephone Number
X.121 Address
International ISDN Number
Registered Address
Destination Indicator
2.5.8 Preferences
Preferred Delivery Method
2.5.9 OSI Applications
Presentation Address
Supported Application Context
2.5.10 Relational
Member
Owner
Role Occupant
See Also
2.5.11 Security
User Password
User Certificate
CA Certificate
Authority Revocation List
Certificate Revocation List
Cross Certificate Pair
.TE
.ps -1
.bp
.sp 3
2.6 Attribute Syntaxes Supported (ref: X.520)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Syntaxes Supported Constraints
2.6.1 Used by the Directory
Undefined
Distinguished Name
Object Identifier
2.6.2 String Attribute Syntaxes
Case Exact String
Case Ignore String
Printable String
Numeric String
Case Ignore List
2.6.3 Miscellaneous
Boolean
Integer
Octet String
UTC Time
Telephone Number
.TE
.sp 3
2.7 Attribute Sets Supported (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Attribute Sets Supported Constraints
2.7.1 Telecommunication
2.7.2 Postal
2.7.3 Locale
2.7.4 Organizational
.TE
.sp 3
2.8 Object Classes Supported (ref X.521)
.TS
center expand allbox doublebox;
l l l l.
Ref # Object Classes Supported Constraints
2.8.1 Top
2.8.2 Alias
2.8.3 Country
2.8.4 Locality
2.8.5 Organization
2.8.6 Organizational Unit
2.8.7 Person
2.8.8 Organizational Person
2.8.9 Organizational Role
2.8.10 Group of Names
2.8.11 Residential Person
2.8.12 Application Process
2.8.13 Application Entity
2.8.14 DSA
2.8.15 Device
2.8.16 Strong Authentication User
2.8.17 Certification Authority
.TE
.bp
.sp 3
2.9 Proprietary Enhancements to DSA