search

GSA / piv-guides

This is the old location for the PIV Playbook. New location below.
https://playbooks.idmanagement.gov/piv/
Other
69 stars 44 forks source link

Fixing incorrect attribute name #127

Closed grandamp closed 7 years ago

grandamp commented 7 years ago

0.9.2342.19200300.100.1.1 is UID, not UUID. See: http://oid-info.com/get/0.9.2342.19200300.100.1.1

lachellel commented 7 years ago

@grandamp

So the reference as UUID vs UID was specifically to FIPS 201 and associated SPs. The Card UUID versus CHUID and it's very confusing sometimes.

Let me check this again and update!

grandamp commented 7 years ago

UUID is a subjectAltName value, and is not a typical attribute within an X.520, or within a distinguished name. Given the example, it is demonstrating Microsoft's inability to render the attribute friendly name, so the OID is rendered in the DN as required by RFC 4514. See: https://tools.ietf.org/html/rfc4514#section-2.3

lachellel commented 7 years ago

I see what you're saying. Merging. In the examples I was using, the UID VALUE may indeed match the UUID VALUE - but you are correct, it's not accurate to state as is and can be confusing.