ANSI INCITS ISO IEC 9594-9-2001 Information technology Open Systems Interconnection The Directory Replication (Adopted by INCITS).pdf

1、Adopted by INCITS (InterNational Committee for Information Technology Standards) as an American National Standard.Date of ANSI Approval: 12/24/2003Published by American National Standards Institute,25 West 43rd Street, New York, New York 10036Copyright 2003 by Information Technology Industry Council

2、 (ITI).All rights reserved.These materials are subject to copyright claims of International Standardization Organization (ISO), InternationalElectrotechnical Commission (IEC), American National Standards Institute (ANSI), and Information Technology Industry Council(ITI). Not for resale. No part of t

3、his publication may be reproduced in any form, including an electronic retrieval system, withoutthe prior written permission of ITI. All requests pertaining to this standard should be submitted to ITI, 1250 Eye Street NW,Washington, DC 20005.Printed in the United States of AmericaReference numberISO

4、/IEC 9594-9:2001(E)ISO/IEC 2001INTERNATIONAL STANDARD ISO/IEC9594-9Third edition2001-12-15Information technology Open Systems Interconnection The Directory: Replication Technologies de linformation Interconnexion de systmes ouverts (OSI) Lannuaire: Duplication ISO/IEC 9594-9:2001(E) PDF disclaimer T

5、his PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading this file, parties accept t

6、herein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the General Info relative to the file;

7、 the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given below. ISO/IEC 2001 All right

8、s reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member body in the country of the

9、requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.ch Web www.iso.ch Published by ISO in 2002 Printed in Switzerland ii ISO/IEC 2001 All rights reserved ISO/IEC 9594-9:2001(E) ISO/IEC 2001 All rights reserved iiiCONTENTS

10、 Page Introduction iv 1 Scope 1 2 Normative references 1 2.1 Identical Recommendations | International Standards . 1 3 Definitions 2 3.1 Basic directory definitions. 2 3.2 Directory model definitions. 2 3.3 Distributed operation definitions . 2 3.4 Replication definitions. 2 4 Abbreviations 3 5 Conv

11、entions 4 6 Replication in the Directory 4 6.1 Caching 4 6.2 Shadowing . 4 6.3 Shadowing functional model . 5 7 Shadowing in the Directory 6 7.1 Shadowing agreement 7 7.2 Shadowed information. 7 7.3 Shadow operations. 11 7.4 DSA Shadow Bind and DSA Shadow Unbind 12 8 Shadow operational binding . 12

12、8.1 Shadow operational binding type characteristics. 12 8.2 DSA procedures for operational binding management 13 8.3 Operational Binding 14 9 Shadowing agreement. 15 9.1 Shadowing agreement specification. 15 9.2 Unit of replication 16 9.3 Update mode 20 10 Directory information shadow service 21 10.

13、1 Shadow supplier initiated service 22 10.2 Shadow consumer initiated service 22 11 Shadow operations 23 11.1 Coordinate Shadow Update operation. 23 11.2 Request Shadow Update operation 24 11.3 Update Shadow operation 26 12 Shadow error. 29 12.1 Shadow error problems 30 12.2 Last update 30 12.3 Upda

14、te window 30 12.4 Common results. 30 Annex A Directory shadow abstract service in ASN.1 . 31 Annex B Amendments and corrigenda 36 ISO/IEC 9594-9:2001(E) iv ISO/IEC 2001 All rights reserved Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical C

15、ommission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity.

16、 ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee,

17、 ISO/IEC JTC 1. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 3. The main task of the joint technical committee is to prepare International Standards. Draft International Standards adopted by the joint technical committee are circulated to nat

18、ional bodies for voting. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of the elements of this part of ISO/IEC 9594 may be the subject of patent rights. ISO and IEC shall not be held

19、responsible for identifying any or all such patent rights. Users and implementors should note the existence of a “defect resolution” procedure in ISO/IEC JTC 1 to identify and correct errors in International Standards through the publication of Technical Corrigenda. Identical corrections are made to

20、 the corresponding ITU-T Recommendations through Corrigenda and may also be made in the form of Implementors Guides. Details of Technical Corrigenda to International Standards are available on the ISO website; published Technical Corrigenda can be obtained via the ISO webstore or from the ISO and IE

21、C national bodies. Corrigenda and Implementors Guides to ITU-T Recommendations can be obtained from the ITU-T website. ISO/IEC 9594-9 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 6, Telecommunications and information exchange between systems, in co

22、llaboration with ITU-T. The identical text is published as ITU-T Rec. X.525. This third edition of ISO/IEC 9594-9 constitutes a technical revision of the second edition (ISO/IEC 9594-9:1998), which is provisionally retained in order to support implementations based on the second edition. This editio

23、n also incorporates Corrigendum 1:2002. ISO/IEC 9594 consists of the following parts, under the general title Information technology Open Systems Interconnection The Directory: Part 1: Overview of concepts, models and services Part 2: Models Part 3: Abstract service definition Part 4: Procedures for

24、 distributed operation Part 5: Protocol specifications Part 6: Selected attribute types Part 7: Selected object classes Part 8: Public-key and attribute certificate frameworks Part 9: Replication Part 10: Use of systems management for administration of the Directory Annex A forms a normative part of

25、 this part of ISO/IEC 9594. Annex B is for information only. ISO/IEC 9594-9:2001(E) ISO/IEC 2001 All rights reserved vIntroduction This Recommendation | International Standard, together with other Recommendations | International Standards, has been produced to facilitate the interconnection of infor

26、mation processing systems to provide directory services. A set of such systems, together with the directory information that they hold, can be viewed as an integrated whole, called the Directory. The information held by the Directory, collectively known as the Directory Information Base (DIB) is typ

27、ically used to facilitate communication between, with or about objects such as application-entities, people, terminals and distribution lists. The Directory plays a significant role in Open Systems Interconnection, whose aim is to allow, with a minimum of technical agreement outside of the interconn

28、ection standards themselves, the interconnection of information processing systems: from different manufacturers; under different managements; of different levels of complexity; and of different ages. This Recommendation | International Standard defines the replication capabilities provided by DSAs

29、to improve the level of service to Directory users. This fourth edition technically revises and enhances, but does not replace, the third edition of this Recommendation | International Standard. Implementations may still claim conformance to the third edition. However, at some point, the third editi

30、on will not be supported (i.e. reported defects will no longer be resolved). It is recommended that implementations conform to this fourth edition as soon as possible. This fourth edition specifies version 1 and version 2 of the Directory protocols. The first and second editions specified only versi

31、on 1. Most of the services and protocols specified in this edition are designed to function under version 1. However some enhanced services and protocols, e.g. signed errors, will not function unless all Directory entities involved in the operation have negotiated version 2. Whichever version has be

32、en negotiated, differences between the services and between the protocols defined in the four editions, except for those specifically assigned to version 2, are accommodated using the rules of extensibility defined in this edition of ITU-T Rec. X.519 | ISO/IEC 9594-5. Annex A, which is an integral p

33、art of this Recommendation | International Standard, provides the ASN.1 module for the directory shadow abstract service. Annex B, which is not an integral part of this Recommendation | International Standard, lists the amendments and defect reports that have been incorporated to form this edition o

34、f this Recommendation | International Standard. ISO/IEC 9594-9:2001 (E) ITU-T Rec. X.525 (02/2001 E) 1 INTERNATIONAL STANDARD ISO/IEC 9594-9:2001 (E) ITU-T RECOMMENDATION Information technology Open Systems Interconnection The Directory: Replication 1 Scope This Recommendation | International Standa

35、rd specifies a shadow service which DSAs may use to replicate Directory information. The service allows Directory information to be replicated among DSAs to improve service to Directory users. The shadowed information is updated, using the defined protocol, thereby improving the service provided to

36、users of the Directory. 2 Normative references The following Recommendations and International Standards contain provisions which, through reference in this text, constitute provisions of this Recommendation | International Standard. At the time of publication, the editions indicated were valid. All

37、 Recommendations and Standards are subject to revision, and parties to agreements based on this Recommendation | International Standard are encouraged to investigate the possibility of applying the most recent edition of the Recommendations and Standards listed below. Members of IEC and ISO maintain

38、 registers of currently valid International Standards. The Telecommunication Standardization Bureau of the ITU maintains a list of currently valid ITU-T Recommendations. 2.1 Identical Recommendations | International Standards ITU-T Recommendation X.200 (1994) | ISO/IEC 7498-1:1994, Information techn

39、ology Open Systems Interconnection Basic Reference Model: The Basic Model. ITU-T Recommendation X.500 (2001) | ISO/IEC 9594-1:2001, Information technology Open Systems Interconnection The Directory: Overview of concepts, models and services. ITU-T Recommendation X.501 (2001) | ISO/IEC 9594-2:2001, I

40、nformation technology Open Systems Interconnection The Directory: Models. ITU-T Recommendation X.509 (2000) | ISO/IEC 9594-8:2001, Information technology Open Systems Interconnection The Directory: Public-key and attribute certificate frameworks. ITU-T Recommendation X.511 (2001) | ISO/IEC 9594-3:20

41、01, Information technology Open Systems Interconnection The Directory: Abstract service definition. ITU-T Recommendation X.518 (2001) | ISO/IEC 9594-4:2001, Information technology Open Systems Interconnection The Directory: Procedures for distributed operation. ITU-T Recommendation X.519 (2001) | IS

42、O/IEC 9594-5:2001, Information technology Open Systems Interconnection The Directory: Protocol specifications. ITU-T Recommendation X.520 (2001) | ISO/IEC 9594-6:2001, Information technology Open Systems Interconnection The Directory: Selected attribute types. ITU-T Recommendation X.521 (2001) | ISO

43、/IEC 9594-7:2001, Information technology Open Systems Interconnection The Directory: Selected object classes. ITU-T Recommendation X.530 (2001) | ISO/IEC 9594-10:2001, Information technology Open Systems Interconnection The Directory: Use of systems management for administration of the Directory. IT

44、U-T Recommendation X.680 (1997) | ISO/IEC 8824-1:1998, Information technology Abstract Syntax Notation One (ASN.1): Specification of basic notation. ITU-T Recommendation X.681 (1997) | ISO/IEC 8824-2:1998, Information technology Abstract Syntax Notation One (ASN.1): Information object specification.

45、 ITU-T Recommendation X.682 (1997) | ISO/IEC 8824-3:1998, Information technology Abstract Syntax Notation One (ASN.1): Constraint specification. ISO/IEC 9594-9:2001 (E) 2 ITU-T Rec. X.525 (02/2001 E) ITU-T Recommendation X.683 (1997) | ISO/IEC 8824-4:1998, Information technology Abstract Syntax Nota

46、tion One (ASN.1): Parameterization of ASN.1 specifications. ITU Recommendation X.830 (1995) | ISO/IEC 11586-1:1996, Information technology Open Systems Interconnection Generic upper layers security: Overview, models and notation. ITU Recommendation X.833 (1995) | ISO/IEC 11586-4:1996, Information te

47、chnology Open Systems Interconnection Generic upper layers security: Protecting transfer syntax specification. ITU-T Recommendation X.880 (1994) | ISO/IEC 13712-1:1995, Information technology Remote operations: Concepts, model and notation. ITU-T Recommendation X.881 (1994) | ISO/IEC 13712-2:1995, I

48、nformation technology Remote operations: OSI realizations Remote Operations Service Element (ROSE) service definition. 3 Definitions For the purposes of this Recommendation | International Standard, the following definitions apply. 3.1 Basic directory definitions The following terms are defined in I

49、TU-T Rec. X.500 | ISO/IEC 9594-1: (the) Directory. 3.2 Directory model definitions The following terms are defined in ITU-T Rec. X.501 | ISO/IEC 9594-2: a) distinguished name; b) Directory Information Tree; c) DSA Specific Entry; d) DSA Information Model; e) DSA Information Tree; f) Directory System Agent. 3.3 Distributed operation definitions The following terms are defined in ITU-T Rec. X.518 | ISO/IEC 9594-4: a) ac