1、 International Telecommunication Union ITU-T X.521TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (11/2008) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY Directory Information technology Open Systems Interconnection The Directory: Selected attribute types ITU-T Recommendation X.52
2、1 ITU-T X-SERIES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS Services and facilities X.1X.19 Interfaces X.20X.49 Transmission, signalling and switching X.50X.89 Network aspects X.90X.149 Maintenance X.150X.179 Administrative arrangements X.180X.199 OPE
3、N SYSTEMS INTERCONNECTION Model and notation X.200X.209 Service definitions X.210X.219 Connection-mode protocol specifications X.220X.229 Connectionless-mode protocol specifications X.230X.239 PICS proformas X.240X.259 Protocol Identification X.260X.269 Security Protocols X.270X.279 Layer Managed Ob
4、jects X.280X.289 Conformance testing X.290X.299 INTERWORKING BETWEEN NETWORKS General X.300X.349 Satellite data transmission systems X.350X.369 IP-based networks X.370X.379 MESSAGE HANDLING SYSTEMS X.400X.499DIRECTORY X.500X.599 OSI NETWORKING AND SYSTEM ASPECTS Networking X.600X.629 Efficiency X.63
5、0X.639 Quality of service X.640X.649 Naming, Addressing and Registration X.650X.679 Abstract Syntax Notation One (ASN.1) X.680X.699 OSI MANAGEMENT Systems Management framework and architecture X.700X.709 Management Communication Service and Protocol X.710X.719 Structure of Management Information X.7
6、20X.729 Management functions and ODMA functions X.730X.799 SECURITY X.800X.849 OSI APPLICATIONS Commitment, Concurrency and Recovery X.850X.859 Transaction processing X.860X.879 Remote operations X.880X.889 Generic applications of ASN.1 X.890X.899 OPEN DISTRIBUTED PROCESSING X.900X.999 INFORMATION A
7、ND NETWORK SECURITY X.1000X.1099 SECURE APPLICATIONS AND SERVICES X.1100X.1199 CYBERSPACE SECURITY X.1200X.1299SECURE APPLICATIONS AND SERVICES X.1300X.1399 For further details, please refer to the list of ITU-T Recommendations. ITU-T Rec. X.521 (11/2008) i INTERNATIONAL STANDARD ISO/IEC 9594-7 ITU-
8、T RECOMMENDATION X.521 Information technology Open Systems Interconnection The Directory: Selected attribute types Summary ITU-T Recommendation X.521 | ISO/IEC 9594-7 defines a number of attribute types and matching rules that may be found useful across a range of applications of the Directory. One
9、particular use for many of the attributes defined is in the formation of names, particularly for the classes of object defined in ITU-T Rec. X.521 | ISO/IEC 9594-7. Source ITU-T Recommendation X.521 was approved on 13 November 2008 by ITU-T Study Group 17 (2009-2012) under ITU-T Recommendation A.8 p
10、rocedure. An identical text is also published as ISO/IEC 9594-7. ii ITU-T Rec. X.521 (11/2008) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications, information and communication technologies (ICTs). The ITU Telecommunic
11、ation Standardization Sector (ITU-T) is a permanent organ of ITU. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly
12、 (WTSA), which meets every four years, establishes the topics for study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which f
13、all within ITU-Ts purview, the necessary standards are prepared on a collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this
14、Recommendation is voluntary. However, the Recommendation may contain certain mandatory provisions (to ensure e.g. interoperability or applicability) and compliance with the Recommendation is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language
15、such as “must“ and the negative equivalents are used to express requirements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY RIGHTS ITU draws attention to the possibility that the practice or implementation of this Recom
16、mendation may involve the use of a claimed Intellectual Property Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the Recommendation development process. As of the date of app
17、roval of this Recommendation, ITU had not received notice of intellectual property, protected by patents, which may be required to implement this Recommendation. However, implementers are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB
18、 patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2009 All rights reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. ITU-T Rec. X.521 (11/2008) iii CONTENTS Page SECTION 1 GENERAL . 1 1 Scope . 1 2 Normative references 1
19、 2.1 Identical Recommendations | International Standards . 1 3 Definitions 2 3.1 Communication Model definitions 2 3.2 Directory Model definitions 2 4 Conventions 2 SECTION 2 SELECTED OBJECT CLASSES 4 5 Definition of useful attribute sets . 4 5.1 Telecommunication attribute set. 4 5.2 Postal attribu
20、te set . 4 5.3 Locale attribute set 4 5.4 Organizational attribute set . 4 6 Definition of selected object classes . 5 6.1 Country. 5 6.2 Locality. 5 6.3 Organization 5 6.4 Organizational Unit . 5 6.5 Person. 5 6.6 Organizational Person 6 6.7 Organizational Role. 6 6.8 Group of Names . 6 6.9 Group o
21、f Unique Names. 6 6.10 Residential Person. 7 6.11 Application Process. 7 6.12 Application Entity . 7 6.13 DSA . 7 6.14 Device 8 6.15 Strong Authentication User . 8 6.16 User Security Information. 8 6.17 Certification Authority . 8 6.18 Certification Authority-V2 9 6.19 DMD 9 6.20 OID Obj1 9 6.21 OID
22、 Obj2 9 6.22 OID ObjC 9 6.23 UII to URN 9 6.24 URN to URL 10 SECTION 3 SELECTED NAME FORMS . 11 7 Definition of selected name forms 11 7.1 Country name form . 11 7.2 Locality name form . 11 7.3 State or Province name form . 11 7.4 Organization name form. 11 7.5 Organizational Unit name form 11 7.6 P
23、erson name form . 11 7.7 Organizational Person name form. 12 7.8 Organizational Role name form . 12 7.9 Group of Names name form 12 7.10 Residential Person name form . 12 iv ITU-T Rec. X.521 (11/2008) Page 7.11 Application Process name form 12 7.12 Application Entity name form 12 7.13 DSA name form
24、12 7.14 Device name form. 13 7.15 DMD name form. 13 7.16 OIDC1 name form. 13 7.17 OIDC2 name form. 13 7.18 OIDC name form 13 Annex A Selected object classes and name forms in ASN.1 . 14 Annex B Suggested name forms and DIT structures . 21 B.1 Country. 21 B.2 Organization 22 B.3 Locality. 22 B.4 Orga
25、nizational Unit . 22 B.5 Organizational Person 23 B.6 Organizational Role. 23 B.7 Group of Names . 23 B.8 Residential Person. 24 B.9 Application Entity . 24 B.10 Device 24 B.11 Application Process. 24 B.12 Alternative Structure Rule for Locality 24 Annex C Amendments and corrigenda. 26 ITU-T Rec. X.
26、521 (11/2008) v Introduction This Recommendation | International Standard, together with other Recommendations | International Standards, has been produced to facilitate the interconnection of information processing systems to provide directory services. A set of such systems, together with the dire
27、ctory information that they hold, can be viewed as an integrated whole, called the Directory. The information held by the Directory, collectively known as the Directory Information Base (DIB), is typically used to facilitate communication between, with or about objects such as application entities,
28、people, terminals, and distribution lists. The Directory plays a significant role in Open Systems Interconnection, whose aim is to allow, with a minimum of technical agreement outside of the interconnection standards themselves, the interconnection of information processing systems: from different m
29、anufacturers; under different managements; of different levels of complexity; and of different ages. This Recommendation | International Standard defines a number of attribute sets and object classes which may be found useful across a range of applications of the Directory. This Recommendation | Int
30、ernational Standard provides the foundation frameworks upon which industry profiles can be defined by other standards groups and industry forums. Many of the features defined as optional in these frameworks may be mandated for use in certain environments through profiles. This sixth edition technica
31、lly revises and enhances, but does not replace, the fifth edition of this Recommendation | International Standard. Implementations may still claim conformance to the fifth edition. However, at some point, the fifth edition will not be supported (i.e., reported defects will no longer be resolved). It
32、 is recommended that implementations conform to this sixth edition as soon as possible. This sixth edition specifies versions 1 and 2 of the Directory protocols. The first and second editions specified only version 1. Most of the services and protocols specified in this edition are designed to funct
33、ion under version 1. However some enhanced services and protocols, e.g., signed errors, will not function unless all Directory entities involved in the operation have negotiated version 2. Whichever version has been negotiated, differences between the services and between the protocols defined in th
34、e six editions, except for those specifically assigned to version 2, are accommodated using the rules of extensibility defined in ITU-T Rec. X.519 | ISO/IEC 9594-5. Annex A, which is an integral part of this Recommendation | International Standard, provides an ASN.1 module containing all of the type
35、 and value definitions which appear in this Recommendation | International Standard. Annex B, which is not an integral part of this Recommendation | International Standard, provides some common naming and structure rules which may or may not be used by administrative authorities. Annex C, which is n
36、ot an integral part of this Recommendation | International Standard, lists the amendments and defect reports that have been incorporated to form this edition of this Recommendation | International Standard. ISO/IEC 9594-7:2008 (E) ITU-T Rec. X.521 (11/2008) 1 INTERNATIONAL STANDARD ITU-T RECOMMENDAT
37、ION Information technology Open Systems Interconnection The Directory: Selected object classes SECTION 1 GENERAL 1 Scope This Recommendation | International Standard defines a number of object classes and name forms which may be found useful across a range of applications of the Directory. The defin
38、ition of an object class involves listing a number of attribute types which are relevant to objects of that class. The definition of a name form involves naming the object class to which it applies and listing the attributes to be used in forming names for objects of that class. These definitions ar
39、e used by the administrative authority which is responsible for the management of the directory information. Any administrative authority can define its own object classes or subclasses and name forms for any purpose. NOTE 1 Those definitions may or may not use the notation specified in ITU-T Rec. X
40、.501 | ISO/IEC 9594-2. NOTE 2 It is recommended that an object class defined in this Recommendation | International Standard, or a subclass derived from one, or a name form defined in this Recommendation | International Standard, be used in preference to the generation of a new one, whenever the sem
41、antics is appropriate for the application. Administrative authorities may support some or all the selected object classes and name forms, and may also add additional ones. All administrative authorities shall support the object classes which the directory uses for its own purpose (the top, alias and
42、 DSA object classes). 2 Normative references The following Recommendations and International Standards contain provisions which, through reference in this text, constitute provisions of this Recommendation | International Standard. At the time of publication, the editions indicated were valid. All R
43、ecommendations and Standards are subject to revision, and parties to agreements based on this Recommendation | International Standard are encouraged to investigate the possibility of applying the most recent editions of the Recommendations and Standards listed below. Members of IEC and ISO maintain
44、registers of currently valid International Standards. The Telecommunication Standardization Bureau of the ITU maintains a list of currently valid ITU-T Recommendations. 2.1 Identical Recommendations | International Standards ITU-T Recommendation X.200 (1994) | ISO/IEC 7498-1:1994, Information techno
45、logy Open Systems Interconnection Basic Reference Model: The Basic Model. ITU-T Recommendation X.500 (2008) | ISO/IEC 9594-1:2008, Information technology Open Systems Interconnection The Directory: Overview of concepts, models and services. ITU-T Recommendation X.501 (2008) | ISO/IEC 9594-2:2008, In
46、formation technology Open Systems Interconnection The Directory: Models. ITU-T Recommendation X.509 (2008) | ISO/IEC 9594-8:2008, Information technology Open Systems Interconnection The Directory: Public-key and attribute certificate frameworks. ITU-T Recommendation X.511 (2008) | ISO/IEC 9594-3:200
47、8, Information technology Open Systems Interconnection The Directory: Abstract service definition. ITU-T Recommendation X.518 (2008) | ISO/IEC 9594-4:2008, Information technology Open Systems Interconnection The Directory: Procedures for distributed operation. ITU-T Recommendation X.519 (2008) | ISO
48、/IEC 9594-5:2008, Information technology Open Systems Interconnection The Directory: Protocol specifications. ITU-T Recommendation X.520 (2008) | ISO/IEC 9594-6:2008, Information technology Open Systems Interconnection The Directory: Selected attribute types. ISO/IEC 9594-7:2008 (E) 2 ITU-T Rec. X.5
49、21 (11/2008) ITU-T Recommendation X.525 (2008) | ISO/IEC 9594-9:2008, Information technology Open Systems Interconnection The Directory: Replication. ITU-T Recommendation X.530 (2008) | ISO/IEC 9594-10:2008, Information technology Open Systems Interconnection The Directory: Use of systems management for administration of the Directory. ITU-T Recommendation X.668 (2008) | ISO/IEC 9834-9:2008, Information technology Open Systems Interconnection Proced
