1、 I n t e r n a t i o n a l T e l e c o m m u n i c a t i o n U n i o n ITU-T X.521 TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (10/2016) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY Directory Information technology Open Systems Interconnection The Directory: Selected object c
2、lasses Recommendation ITU-T X.521 ITU-T X-SERIES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS Services and facilities X.1X.19 Interfaces X.20X.49 Transmission, signalling and switching X.50X.89 Network aspects X.90X.149 Maintenance X.150X.179 Administra
3、tive arrangements X.180X.199 OPEN SYSTEMS INTERCONNECTION Model and notation X.200X.209 Service definitions X.210X.219 Connection-mode protocol specifications X.220X.229 Connectionless-mode protocol specifications X.230X.239 PICS proformas X.240X.259 Protocol Identification X.260X.269 Security Proto
4、cols X.270X.279 Layer Managed Objects X.280X.289 Conformance testing X.290X.299 INTERWORKING BETWEEN NETWORKS General X.300X.349 Satellite data transmission systems X.350X.369 IP-based networks X.370X.379 MESSAGE HANDLING SYSTEMS X.400X.499 DIRECTORY X.500X.599 OSI NETWORKING AND SYSTEM ASPECTS Netw
5、orking X.600X.629 Efficiency X.630X.639 Quality of service X.640X.649 Naming, Addressing and Registration X.650X.679 Abstract Syntax Notation One (ASN.1) X.680X.699 OSI MANAGEMENT Systems management framework and architecture X.700X.709 Management communication service and protocol X.710X.719 Struct
6、ure of management information X.720X.729 Management functions and ODMA functions X.730X.799 SECURITY X.800X.849 OSI APPLICATIONS Commitment, concurrency and recovery X.850X.859 Transaction processing X.860X.879 Remote operations X.880X.889 Generic applications of ASN.1 X.890X.899 OPEN DISTRIBUTED PR
7、OCESSING X.900X.999 INFORMATION AND NETWORK SECURITY X.1000X.1099 SECURE APPLICATIONS AND SERVICES X.1100X.1199 CYBERSPACE SECURITY X.1200X.1299 SECURE APPLICATIONS AND SERVICES X.1300X.1399 CYBERSECURITY INFORMATION EXCHANGE X.1500X.1599 CLOUD COMPUTING SECURITY X.1600X.1699 For further details, pl
8、ease refer to the list of ITU-T Recommendations. Rec. ITU-T X.521 (10/2016) i INTERNATIONAL STANDARD ISO/IEC 9594-7 RECOMMENDATION ITU-T X.521 Information technology Open Systems Interconnection The Directory: Selected object classes Summary Recommendation ITU-T X.521 | ISO/IEC 9594-7 defines a numb
9、er of selected object classes and name forms which may be found useful across a range of applications of the Directory. An object class definition specifies the attribute types which are relevant to the objects of that class. A name form definition specifies the attributes to be used in forming name
10、s for the objects of a given class History Edition Recommendation Approval Study Group Unique ID* 1.0 ITU-T X.521 1988-11-25 11.1002/1000/3012 2.0 ITU-T X.521 1993-11-16 7 11.1002/1000/3013 3.0 ITU-T X.521 1997-08-09 7 11.1002/1000/4128 3.1 ITU-T X.521 (1997) Amd. 1 2000-03-31 7 11.1002/1000/5043 3.
11、2 ITU-T X.521 (1997) Technical Cor. 1 2001-02-02 7 11.1002/1000/5325 4.0 ITU-T X.521 2001-02-02 7 11.1002/1000/5326 5.0 ITU-T X.521 2005-08-29 17 11.1002/1000/8509 5.1 ITU-T X.521 (2005) Cor. 1 2012-04-13 17 11.1002/1000/11592 6.0 ITU-T X.521 2008-11-13 17 11.1002/1000/9599 6.1 ITU-T X.521 (2008) Co
12、r. 1 2012-04-13 17 11.1002/1000/11593 7.0 ITU-T X.521 2012-10-14 17 11.1002/1000/11744 8.0 ITU-T X.521 2016-10-14 17 11.1002/1000/13037 Keywords Attribute, directory, directory system agent, directory user agent, distinguished name, object class. _ * To access the Recommendation, type the URL http:/
13、handle.itu.int/ in the address field of your web browser, followed by the Recommendations unique ID. For example, http:/handle.itu.int/11.1002/1000/11830-en. ii Rec. ITU-T X.521 (10/2016) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field o
14、f telecommunications, information and communication technologies (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ of ITU. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing
15、telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes the topics for study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by
16、the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessary standards are prepared on a collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate bot
17、h a telecommunication administration and a recognized operating agency. Compliance with this Recommendation is voluntary. However, the Recommendation may contain certain mandatory provisions (to ensure, e.g., interoperability or applicability) and compliance with the Recommendation is achieved when
18、all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are used to express requirements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY
19、RIGHTSITU draws attention to the possibility that the practice or implementation of this Recommendation may involve the use of a claimed Intellectual Property Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by
20、ITU members or others outside of the Recommendation development process. As of the date of approval of this Recommendation, ITU had not received notice of intellectual property, protected by patents, which may be required to implement this Recommendation. However, implementers are cautioned that thi
21、s may not represent the latest information and are therefore strongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2017 All rights reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. Rec. ITU-
22、T X.521 (10/2016) iii CONTENTS Page SECTION 1 GENERAL . 1 1 Scope 1 2 Normative references 1 2.1 Identical Recommendations | International Standards 1 3 Definitions 2 3.1 Communication Model definitions 2 3.2 Directory Model definitions 2 4 Conventions 2 SECTION 2 SELECTED OBJECT CLASSES 4 5 Definit
23、ion of useful attribute sets . 4 5.1 Telecommunication attribute set . 4 5.2 Postal attribute set . 4 5.3 Locale attribute set 4 5.4 Organizational attribute set . 5 6 Definition of selected object classes . 5 6.1 Country 5 6.2 Locality . 5 6.3 Organization 5 6.4 Organizational Unit . 5 6.5 Person 6
24、 6.6 Organizational Person . 6 6.7 Organizational Role. 6 6.8 Group Of Names . 6 6.9 Group Of Unique Names . 7 6.10 Residential Person . 7 6.11 Application Process . 7 6.12 Application Entity . 7 6.13 DSA . 8 6.14 Device . 8 6.15 Strong Authentication User . 8 6.16 User Security Information . 8 6.17
25、 User Password . 9 6.18 Certification Authority 9 6.19 Certification Authority-V2 9 6.20 DMD . 9 6.21 OID Obj1 . 9 6.22 OID Obj2 . 10 6.23 OID ObjC 10 6.24 OID root 10 6.25 OID arc 10 6.26 URN ObjC . 10 6.27 ISO Tag Information . 10 6.28 ISO Tag Type 11 6.29 EPC Tag Information object class . 11 6.3
26、0 EPC Tag Type Object Class 11 SECTION 3 SELECTED NAME FORMS 12 7 Definition of selected name forms 12 7.1 Country name form . 12 7.2 Locality name form . 12 7.3 State Or Province name form 12 7.4 Organization name form 12 iv Rec. ITU-T X.521 (10/2016) Page 7.5 Organizational Unit name form . 12 7.6
27、 Person name form . 13 7.7 Organizational Person name form . 13 7.8 Organizational Role name form 13 7.9 Group Of Names name form . 13 7.10 Residential Person name form . 13 7.11 Application Process name form 13 7.12 Application Entity name form . 13 7.13 DSA name form 14 7.14 Device name form . 14
28、7.15 DMD name form . 14 7.16 OIDC1 name form . 14 7.17 OIDC2 name form . 14 7.18 OIDC name form . 14 7.19 URNC name form . 14 7.20 OID root name form 15 7.21 OID arc name form . 15 Annex A Selected object classes and name forms in ASN.1 16 Annex B Suggested name forms and Directory information tree
29、(DIT) structures 24 B.1 Country 24 B.2 Organization 25 B.3 Locality . 25 B.4 Organizational Unit . 25 B.5 Organizational Person . 26 B.6 Organizational Role. 26 B.7 Group of Names 26 B.8 Residential Person . 27 B.9 Application Entity . 27 B.10 Device . 27 B.11 Application Process . 27 B.12 Alternati
30、ve Structure Rule for Locality . 27 Annex C Amendments and corrigenda . 29 Rec. ITU-T X.521 (10/2016) v Introduction This Recommendation | International Standard, together with other Recommendations | International Standards, has been produced to facilitate the interconnection of information process
31、ing systems to provide directory services. A set of such systems, together with the directory information that they hold, can be viewed as an integrated whole, called the Directory. The information held by the Directory, collectively known as the Directory Information Base (DIB), is typically used t
32、o facilitate communication between, with or about objects such as application entities, people, terminals, and distribution lists. The Directory plays a significant role in Open Systems Interconnection, whose aim is to allow, with a minimum of technical agreement outside of the interconnection stand
33、ards themselves, the interconnection of information processing systems: from different manufacturers; under different managements; of different levels of complexity; and of different ages. This Recommendation | International Standard defines a number of attribute sets and object classes which may be
34、 found useful across a range of applications of the Directory. This Recommendation | International Standard provides the foundation frameworks upon which industry profiles can be defined by other standards groups and industry forums. Many of the features defined as optional in these frameworks may b
35、e mandated for use in certain environments through profiles. This eighth edition technically revises and enhances the seventh edition of this Recommendation | International Standard. This eight edition specifies versions 1 and 2 of the Directory protocols. The first and second editions specified onl
36、y version 1. Most of the services and protocols specified in this edition are designed to function under version 1. However some enhanced services and protocols, e.g., signed errors, will not function unless all Directory entities involved in the operation have negotiated version 2. Whichever versio
37、n has been negotiated, differences between the services and between the protocols defined in the eight editions, except for those specifically assigned to version 2, are accommodated using the rules of extensibility defined in Rec. ITU-T X.519 | ISO/IEC 9594-5. Annex A, which is an integral part of
38、this Recommendation | International Standard, provides an ASN.1 module containing all of the type and value definitions which appear in this Recommendation | International Standard. Annex B, which is not an integral part of this Recommendation | International Standard, provides some common naming an
39、d structure rules which may or may not be used by administrative authorities. Annex C, which is not an integral part of this Recommendation | International Standard, lists the amendments and defect reports that have been incorporated to form this edition of this Recommendation | International Standa
40、rd. ISO/IEC 9594-7:2017 (E) Rec. ITU-T X.521 (10/2016) 1 INTERNATIONAL STANDARD ITU-T RECOMMENDATION Information technology Open Systems Interconnection The Directory: Selected object classes SECTION 1 GENERAL 1 Scope This Recommendation | International Standard defines a number of object classes an
41、d name forms which may be found useful across a range of applications of the Directory. The definition of an object class involves listing a number of attribute types which are relevant to objects of that class. The definition of a name form involves naming the object class to which it applies and l
42、isting the attributes to be used in forming names for objects of that class. These definitions are used by the administrative authority which is responsible for the management of the directory information. Any administrative authority can define its own object classes or subclasses and name forms fo
43、r any purpose. NOTE 1 Those definitions may or may not use the notation specified in Rec. ITU-T X.501 | ISO/IEC 9594-2. NOTE 2 It is recommended that an object class defined in this Recommendation | International Standard, or a subclass derived from one, or a name form defined in this Recommendation
44、 | International Standard, be used in preference to the generation of a new one, whenever the semantics is appropriate for the application. Administrative authorities may support some or all the selected object classes and name forms, and may also add additional ones. All administrative authorities
45、shall support the object classes which the directory uses for its own purpose (the top, alias and Directory system agent (DSA) object classes). 2 Normative references The following Recommendations and International Standards contain provisions which, through reference in this text, constitute provis
46、ions of this Recommendation | International Standard. At the time of publication, the editions indicated were valid. All Recommendations and Standards are subject to revision, and parties to agreements based on this Recommendation | International Standard are encouraged to investigate the possibilit
47、y of applying the most recent editions of the Recommendations and Standards listed below. Members of IEC and ISO maintain registers of currently valid International Standards. The Telecommunication Standardization Bureau of the ITU maintains a list of currently valid ITU-T Recommendations. 2.1 Ident
48、ical Recommendations | International Standards Recommendation ITU-T X.200 (1994) | ISO/IEC 7498-1:1994, Information technology Open Systems Interconnection Basic Reference Model: The Basic Model. Recommendation ITU-T X.500 (2016) | ISO/IEC 9594-1:2017, Information technology Open Systems Interconnec
49、tion The Directory: Overview of concepts, models and services. Recommendation ITU-T X.501 (2016) | ISO/IEC 9594-2:2017, Information technology Open Systems Interconnection The Directory: Models. Recommendation ITU-T X.509 (2016) | ISO/IEC 9594-8:2017, Information technology Open Systems Interconnection The Directory: Public-key and attribute certificate frameworks. Recommendation ITU-T X.511 (2016) | ISO/IEC 9594-3:2017, Information
