1、Adopted by INCITS (InterNational Committee for Information Technology Standards) as an American National Standard.Date of ANSI Approval: 12/24/2003Published by American National Standards Institute,25 West 43rd Street, New York, New York 10036Copyright 2003 by Information Technology Industry Council
2、 (ITI).All rights reserved.These materials are subject to copyright claims of International Standardization Organization (ISO), InternationalElectrotechnical Commission (IEC), American National Standards Institute (ANSI), and Information Technology Industry Council(ITI). Not for resale. No part of t
3、his publication may be reproduced in any form, including an electronic retrieval system, withoutthe prior written permission of ITI. All requests pertaining to this standard should be submitted to ITI, 1250 Eye Street NW,Washington, DC 20005.Printed in the United States of AmericaReference numberISO
4、/IEC 9594-7:2001(E)ISO/IEC 2001INTERNATIONAL STANDARD ISO/IEC9594-7Fourth edition2001-12-15Information technology Open Systems Interconnection The Directory: Selected object classes Technologies de linformation Interconnexion de systmes ouverts (OSI) Lannuaire: Classes dobjets slectionns ISO/IEC 959
5、4-7:2001(E) PDF disclaimer This PDF file may contain embedded typefaces. In accordance with Adobes licensing policy, this file may be printed or viewed but shall not be edited unless the typefaces which are embedded are licensed to and installed on the computer performing the editing. In downloading
6、 this file, parties accept therein the responsibility of not infringing Adobes licensing policy. The ISO Central Secretariat accepts no liability in this area. Adobe is a trademark of Adobe Systems Incorporated. Details of the software products used to create this PDF file can be found in the Genera
7、l Info relative to the file; the PDF-creation parameters were optimized for printing. Every care has been taken to ensure that the file is suitable for use by ISO member bodies. In the unlikely event that a problem relating to it is found, please inform the Central Secretariat at the address given b
8、elow. ISO/IEC 2001 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm, without permission in writing from either ISO at the address below or ISOs member
9、 body in the country of the requester. ISO copyright office Case postale 56 CH-1211 Geneva 20 Tel. + 41 22 749 01 11 Fax + 41 22 749 09 47 E-mail copyrightiso.ch Web www.iso.ch Published by ISO in 2002 Printed in Switzerland ii ISO/IEC 2001 All rights reserved ISO/IEC 9594-7:2001(E) ISO/IEC 2001 All
10、 rights reserved iiiCONTENTS Page SECTION 1 GENERAL 1 1 Scope . 1 2 Normative references 1 2.1 Identical Recommendations | International Standards 1 3 Definitions . 2 3.1 OSI Reference Model definitions . 2 3.2 Directory Model definitions . 2 4 Conventions . 2 SECTION 2 SELECTED OBJECT CLASSES 4 5 D
11、efinition of useful attribute sets 4 5.1 Telecommunication attribute set 4 5.2 Postal attribute set 4 5.3 Locale attribute set. 4 5.4 Organizational attribute set 4 6 Definition of selected object classes 5 6.1 Country . 5 6.2 Locality . 5 6.3 Organization 5 6.4 Organizational Unit. 5 6.5 Person . 5
12、 6.6 Organizational Person . 6 6.7 Organizational Role. 6 6.8 Group of Names. 6 6.9 Group of Unique Names 7 6.10 Residential Person . 7 6.11 Application Process . 7 6.12 Application Entity . 7 6.13 DSA 8 6.14 Device . 8 6.15 Strong Authentication User 8 6.16 User Security Information 8 6.17 Certific
13、ation Authority. 9 6.18 Certification Authority-V2. 9 6.19 DMD . 9 SECTION 3 SELECTED NAME FORMS 10 7 Definition of selected name forms. 10 7.1 Country name form 10 7.2 Locality name form 10 7.3 State or Province name form 10 7.4 Organization name form 10 7.5 Organizational Unit name form . 10 7.6 P
14、erson name form 10 7.7 Organizational Person name form 11 7.8 Organizational Role name form. 11 7.9 Group of Names name form. 11 7.10 Residential Person name form 11 7.11 Application Process name form 11 7.12 Application Entity name form 11 7.13 DSA name form. 12 7.14 Device name form 12 7.15 DMD na
15、me form . 12 ISO/IEC 9594-7:2001(E) iv ISO/IEC 2001 All rights reserved Page Annex A Selected object classes and name forms in ASN.1. 13 Annex B Suggested name forms and DIT structures 19 B.1 Country . 20 B.2 Organization 20 B.3 Locality . 20 B.4 Organizational Unit. 21 B.5 Organizational Person . 2
16、1 B.6 Organizational Role. 21 B.7 Group of Names. 21 B.8 Residential Person . 22 B.9 Application Entity . 22 B.10 Device . 22 B.11 Application Process . 22 B.12 Alternative Structure Rule for Locality. 23 Annex C Amendments and corrigenda 24 ISO/IEC 9594-7:2001(E) ISO/IEC 2001 All rights reserved vF
17、oreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technic
18、al committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part
19、in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. International Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 3. The main task of the joint technical committee is to prepare Interna
20、tional Standards. Draft International Standards adopted by the joint technical committee are circulated to national bodies for voting. Publication as an International Standard requires approval by at least 75 % of the national bodies casting a vote. Attention is drawn to the possibility that some of
21、 the elements of this part of ISO/IEC 9594 may be the subject of patent rights. ISO and IEC shall not be held responsible for identifying any or all such patent rights. Users and implementors should note the existence of a “defect resolution” procedure in ISO/IEC JTC 1 to identify and correct errors
22、 in International Standards through the publication of Technical Corrigenda. Identical corrections are made to the corresponding ITU-T Recommendations through Corrigenda and may also be made in the form of Implementors Guides. Details of Technical Corrigenda to International Standards are available
23、on the ISO website; published Technical Corrigenda can be obtained via the ISO webstore or from the ISO and IEC national bodies. Corrigenda and Implementors Guides to ITU-T Recommendations can be obtained from the ITU-T website. ISO/IEC 9594-7 was prepared by Joint Technical Committee ISO/IEC JTC 1,
24、 Information technology, Subcommittee SC 6, Telecommunications and information exchange between systems, in collaboration with ITU-T. The identical text is published as ITU-T Rec. X.521. This fourth edition of ISO/IEC 9594-7 constitutes a technical revision of the third edition (ISO/IEC 9594-7:1998)
25、, which is provisionally retained in order to support implementations based on the third edition. ISO/IEC 9594 consists of the following parts, under the general title Information technology Open Systems Interconnection The Directory: Part 1: Overview of concepts, models and services Part 2: Models
26、Part 3: Abstract service definition Part 4: Procedures for distributed operation Part 5: Protocol specifications Part 6: Selected attribute types Part 7: Selected object classes Part 8: Public-key and attribute certificate frameworks Part 9: Replication Part 10: Use of systems management for adminis
27、tration of the Directory Annex A forms a normative part of this part of ISO/IEC 9594. Annexes B and C are for information only. ISO/IEC 9594-7:2001(E) vi ISO/IEC 2001 All rights reserved Introduction This Recommendation | International Standard, together with other Recommendations | International St
28、andards, has been produced to facilitate the interconnection of information processing systems to provide directory services. A set of such systems, together with the directory information that they hold, can be viewed as an integrated whole, called the Directory. The information held by the Directo
29、ry, collectively known as the Directory Information Base (DIB), is typically used to facilitate communication between, with or about objects such as application entities, people, terminals, and distribution lists. The Directory plays a significant role in Open Systems Interconnection, whose aim is t
30、o allow, with a minimum of technical agreement outside of the interconnection standards themselves, the interconnection of information processing systems: from different manufacturers; under different managements; of different levels of complexity; and of different ages. This Recommendation | Intern
31、ational Standard defines a number of attribute sets and object classes which may be found useful across a range of applications of the Directory. This fourth edition technically revises and enhances, but does not replace, the third edition of this Recommendation | International Standard. Implementat
32、ions may still claim conformance to the third edition. However, at some point, the third edition will not be supported (i.e. reported defects will no longer be resolved). It is recommended that implementations conform to this fourth edition as soon as possible. This fourth edition specifies version
33、1 and version 2 of the Directory protocols. The first and second editions specified only version 1. Most of the services and protocols specified in this edition are designed to function under version 1. However some enhanced services and protocols, e.g. signed errors, will not function unless all Di
34、rectory entities involved in the operation have negotiated version 2. Whichever version has been negotiated, differences between the services and between the protocols defined in the four editions, except for those specifically assigned to version 2, are accommodated using the rules of extensibility
35、 defined in this edition of ITU-T Rec. X.519 | ISO/IEC 9594-5. Annex A, which is an integral part of this Recommendation | International Standard, provides an ASN.1 module containing all of the type and value definitions which appear in this Recommendation | International Standard. Annex B, which is
36、 not an integral part of this Recommendation | International Standard, provides some common naming and structure rules which may or may not be used by administrative authorities. Annex C, which is not an integral part of this Recommendation | International Standard, lists the amendments and defect r
37、eports that have been incorporated to form this edition of this Recommendation | International Standard. ISO/IEC 9594-7:2001 (E) ITU-T Rec. X.521 (02/2001 E) 1 INTERNATIONAL STANDARD ISO/IEC 9594-7:2001 (E) ITU-T RECOMMENDATION Information technology Open Systems Interconnection The Directory: Selec
38、ted object classes SECTION 1 GENERAL 1 Scope This Recommendation | International Standard defines a number of object classes and name forms which may be found useful across a range of applications of the Directory. The definition of an object class involves listing a number of attribute types which
39、are relevant to objects of that class. The definition of a name form involves naming the object class to which it applies and listing the attributes to be used in forming names for objects of that class. These definitions are used by the administrative authority which is responsible for the manageme
40、nt of the directory information. Any administrative authority can define its own object classes or subclasses and name forms for any purpose. NOTE 1 Those definitions may or may not use the notation specified in ITU-T Rec. X.501 | ISO/IEC 9594-2. NOTE 2 It is recommended that an object class defined
41、 in this Recommendation | International Standard, or a subclass derived from one, or a name form defined in this Recommendation | International Standard, be used in preference to the generation of a new one, whenever the semantics is appropriate for the application. Administrative authorities may su
42、pport some or all the selected object classes and name forms, and may also add additional ones. All administrative authorities shall support the object classes which the directory uses for its own purpose (the top, alias and DSA object classes). 2 Normative references The following Recommendations a
43、nd International Standards contain provisions which, through reference in this text, constitute provisions of this Recommendation | International Standard. At the time of publication, the editions indicated were valid. All Recommendations and Standards are subject to revision, and parties to agreeme
44、nts based on this Recommendation | International Standard are encouraged to investigate the possibility of applying the most recent editions of the Recommendations and Standards listed below. Members of IEC and ISO maintain registers of currently valid International Standards. The Telecommunication
45、Standardization Bureau of the ITU maintains a list of currently valid ITU-T Recommendations. 2.1 Identical Recommendations | International Standards ITU-T Recommendation X.200 (1994) | ISO/IEC 7498-1:1994, Information technology Open Systems Interconnection Basic Reference Model: The Basic Model. IT
46、U-T Recommendation X.500 (2001) | ISO/IEC 9594-1:2001, Information technology Open Systems Interconnection The Directory: Overview of concepts, models and services. ITU-T Recommendation X.501 (2001) | ISO/IEC 9594-2:2001, Information technology Open Systems Interconnection The Directory: Models. ITU
47、-T Recommendation X.509 (2000) | ISO/IEC 9594-8:2001, Information technology Open Systems Interconnection The Directory: Public-key and attribute certificate frameworks. ITU-T Recommendation X.511 (2001) | ISO/IEC 9594-3:2001, Information technology Open Systems Interconnection The Directory: Abstra
48、ct service definition. ISO/IEC 9594-7:2001 (E) 2 ITU-T Rec. X.521 (02/2001 E) ITU-T Recommendation X.518 (2001) | ISO/IEC 9594-4:2001, Information technology Open Systems Interconnection The Directory: Procedures for distributed operation. ITU-T Recommendation X.519 (2001) | ISO/IEC 9594-5:2001, Inf
49、ormation technology Open Systems Interconnection The Directory: Protocol specifications. ITU-T Recommendation X.520 (2001) | ISO/IEC 9594-6:2001, Information technology Open Systems Interconnection The Directory: Selected attribute types. ITU-T Recommendation X.525 (2001) | ISO/IEC 9594-9:2001, Information technology Open Systems Interconnection The Directory: Replication. ITU-T Recommendation X.530 (2001) | ISO/IEC 9594-10:2001, Informatio
