1、 International Telecommunication Union ITU-T X.525TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (11/2008) SERIES X: DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY Directory Information technology Open Systems Interconnection The Directory: Replication ITU-T Recommendation X.525 ITU-T X-SER
2、IES RECOMMENDATIONS DATA NETWORKS, OPEN SYSTEM COMMUNICATIONS AND SECURITY PUBLIC DATA NETWORKS Services and facilities X.1X.19 Interfaces X.20X.49 Transmission, signalling and switching X.50X.89 Network aspects X.90X.149 Maintenance X.150X.179 Administrative arrangements X.180X.199 OPEN SYSTEMS INT
3、ERCONNECTION Model and notation X.200X.209 Service definitions X.210X.219 Connection-mode protocol specifications X.220X.229 Connectionless-mode protocol specifications X.230X.239 PICS proformas X.240X.259 Protocol Identification X.260X.269 Security Protocols X.270X.279 Layer Managed Objects X.280X.
4、289 Conformance testing X.290X.299 INTERWORKING BETWEEN NETWORKS General X.300X.349 Satellite data transmission systems X.350X.369 IP-based networks X.370X.379 MESSAGE HANDLING SYSTEMS X.400X.499DIRECTORY X.500X.599 OSI NETWORKING AND SYSTEM ASPECTS Networking X.600X.629 Efficiency X.630X.639 Qualit
5、y of service X.640X.649 Naming, Addressing and Registration X.650X.679 Abstract Syntax Notation One (ASN.1) X.680X.699 OSI MANAGEMENT Systems Management framework and architecture X.700X.709 Management Communication Service and Protocol X.710X.719 Structure of Management Information X.720X.729 Manag
6、ement functions and ODMA functions X.730X.799 SECURITY X.800X.849 OSI APPLICATIONS Commitment, Concurrency and Recovery X.850X.859 Transaction processing X.860X.879 Remote operations X.880X.889 Generic applications of ASN.1 X.890X.899 OPEN DISTRIBUTED PROCESSING X.900X.999 INFORMATION AND NETWORK SE
7、CURITY X.1000X.1099 SECURE APPLICATIONS AND SERVICES X.1100X.1199 CYBERSPACE SECURITY X.1200X.1299SECURE APPLICATIONS AND SERVICES X.1300X.1399 For further details, please refer to the list of ITU-T Recommendations. ITU-T Rec. X.525 (11/2008) i INTERNATIONAL STANDARD ISO/IEC 9594-9 ITU-T RECOMMENDAT
8、ION X.525 Information technology Open Systems Interconnection The Directory: Replication Summary ITU-T Recommendation X.525 | ISO/IEC 9594-9 specifies a shadow service which DSAs may use to replicate Directory information. The service allows Directory information to be replicated among DSAs to impro
9、ve service to Directory users, and provides for the automatic updating of this information. Source ITU-T Recommendation X.525 was approved on 13 November 2008 by ITU-T Study Group 17 (2009-2012) under the ITU-T Recommendation A.8 procedure. An identical text is also published as ISO/IEC 9594-9. ii I
10、TU-T Rec. X.525 (11/2008) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications, information and communication technologies (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ of ITU. ITU
11、-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommunication Standardization Assembly (WTSA), which meets every four years, establishes the topics for stu
12、dy by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of information technology which fall within ITU-Ts purview, the necessary standards are prepared on a
13、collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operating agency. Compliance with this Recommendation is voluntary. However, the Recommendation may contain
14、certain mandatory provisions (to ensure e.g. interoperability or applicability) and compliance with the Recommendation is achieved when all of these mandatory provisions are met. The words “shall“ or some other obligatory language such as “must“ and the negative equivalents are used to express requi
15、rements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY RIGHTS ITU draws attention to the possibility that the practice or implementation of this Recommendation may involve the use of a claimed Intellectual Property Righ
16、t. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the Recommendation development process. As of the date of approval of this Recommendation, ITU had not received notice of intellec
17、tual property, protected by patents, which may be required to implement this Recommendation. However, implementers are cautioned that this may not represent the latest information and are therefore strongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2009 All rights
18、 reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. ITU-T Rec. X.525 (11/2008) iii CONTENTS Page 1 Scope . 1 2 Normative references 1 2.1 Identical Recommendations | International Standards . 1 3 Definitions 2 3.1 Basic Dire
19、ctory definitions 2 3.2 Directory model definitions. 2 3.3 Distributed operation definitions 2 3.4 Replication definitions . 2 4 Abbreviations 3 5 Conventions 3 6 Replication in the Directory 4 6.1 Caching. 4 6.2 Shadowing. 4 6.3 Shadowing functional model . 5 7 Shadowing in the Directory 6 7.1 Shad
20、owing agreement 6 7.2 Shadowed information . 7 7.3 Shadow operations 11 7.4 DSA Shadow Bind and DSA Shadow Unbind. 11 8 Shadow operational binding 12 8.1 Shadow operational binding type characteristics 12 8.2 DSA procedures for operational binding management 12 8.3 Operational Binding 14 9 Shadowing
21、 agreement . 14 9.1 Shadowing agreement specification 15 9.2 Unit of replication . 15 9.3 Update mode 20 10 Directory information shadow service. 21 10.1 Shadow supplier initiated service . 21 10.2 Shadow consumer initiated service . 21 11 Shadow operations 22 11.1 Coordinate Shadow Update operation
22、 . 22 11.2 Request Shadow Update operation 23 11.3 Update Shadow operation . 25 12 Shadow error . 28 12.1 Shadow error problems 29 12.2 Last update 29 12.3 Update window. 29 12.4 Common results 29 Annex A Directory shadow abstract service in ASN.1 30 Annex B Amendments and corrigenda. 35 iv ITU-T Re
23、c. X.525 (11/2008) Introduction This Recommendation | International Standard, together with other Recommendations | International Standards, has been produced to facilitate the interconnection of information processing systems to provide directory services. A set of such systems, together with the d
24、irectory information that they hold, can be viewed as an integrated whole, called the Directory. The information held by the Directory, collectively known as the Directory Information Base (DIB) is typically used to facilitate communication between, with or about objects such as application-entities
25、, people, terminals and distribution lists. The Directory plays a significant role in Open Systems Interconnection, whose aim is to allow, with a minimum of technical agreement outside of the interconnection standards themselves, the interconnection of information processing systems: from different
26、manufacturers; under different managements; of different levels of complexity; and of different ages. This Recommendation | International Standard defines the replication capabilities provided by DSAs to improve the level of service to Directory users. This Recommendation | International Standard pr
27、ovides the foundation frameworks upon which industry profiles can be defined by other standards groups and industry forums. Many of the features defined as optional in these frameworks may be mandated for use in certain environments through profiles. This sixth edition technically revises and enhanc
28、es, but does not replace, the fifth edition of this Recommendation | International Standard. Implementations may still claim conformance to the fifth edition. However, at some point, the fifth edition will not be supported (i.e., reported defects will no longer be resolved). It is recommended that i
29、mplementations conform to this sixth edition as soon as possible. This sixth edition specifies versions 1 and 2 of the Directory protocols. The first and second editions specified only version 1. Most of the services and protocols specified in this edition are designed to function under version 1. H
30、owever, some enhanced services and protocols, e.g., signed errors, will not function unless all Directory entities involved in the operation have negotiated version 2. Whichever version has been negotiated, differences between the services and between the protocols defined in the six editions, excep
31、t for those specifically assigned to version 2, are accommodated using the rules of extensibility defined in ITU-T Rec. X.519 | ISO/IEC 9594-5. Annex A, which is an integral part of this Recommendation | International Standard, provides the ASN.1 module for the directory shadow abstract service. Ann
32、ex B, which is not an integral part of this Recommendation | International Standard, lists the amendments and defect reports that have been incorporated to form this edition of this Recommendation | International Standard. ISO/IEC 9594-9:2008 (E) ITU-T Rec. X.525 (11/2008) 1 INTERNATIONAL STANDARD I
33、TU-T RECOMMENDATION Information technology Open Systems Interconnection The Directory: Replication 1 Scope This Recommendation | International Standard specifies a shadow service which DSAs may use to replicate Directory information. The service allows Directory information to be replicated among DS
34、As to improve service to Directory users. The shadowed information is updated, using the defined protocol, thereby improving the service provided to users of the Directory. 2 Normative references The following Recommendations and International Standards contain provisions which, through reference in
35、 this text, constitute provisions of this Recommendation | International Standard. At the time of publication, the editions indicated were valid. All Recommendations and Standards are subject to revision, and parties to agreements based on this Recommendation | International Standard are encouraged
36、to investigate the possibility of applying the most recent edition of the Recommendations and Standards listed below. Members of IEC and ISO maintain registers of currently valid International Standards. The Telecommunication Standardization Bureau of the ITU maintains a list of currently valid ITU-
37、T Recommendations. 2.1 Identical Recommendations | International Standards ITU-T Recommendation X.200 (1994) | ISO/IEC 7498-1:1994, Information technology Open Systems Interconnection Basic Reference Model: The Basic Model. ITU-T Recommendation X.500 (2008) | ISO/IEC 9594-1:2008, Information technol
38、ogy Open Systems Interconnection The Directory: Overview of concepts, models and services. ITU-T Recommendation X.501 (2008) | ISO/IEC 9594-2:2008, Information technology Open Systems Interconnection The Directory: Models. ITU-T Recommendation X.509 (2008) | ISO/IEC 9594-8:2008, Information technolo
39、gy Open Systems Interconnection The Directory: Public-key and attribute certificate frameworks. ITU-T Recommendation X.511 (2008) | ISO/IEC 9594-3:2008, Information technology Open Systems Interconnection The Directory: Abstract service definition. ITU-T Recommendation X.518 (2008) | ISO/IEC 9594-4:
40、2008, Information technology Open Systems Interconnection The Directory: Procedures for distributed operation. ITU-T Recommendation X.519 (2008) | ISO/IEC 9594-5:2008, Information technology Open Systems Interconnection The Directory: Protocol specifications. ITU-T Recommendation X.520 (2008) | ISO/
41、IEC 9594-6:2008, Information technology Open Systems Interconnection The Directory: Selected attribute types. ITU-T Recommendation X.521 (2008) | ISO/IEC 9594-7:2008, Information technology Open Systems Interconnection The Directory: Selected object classes. ITU-T Recommendation X.530 (2008) | ISO/I
42、EC 9594-10:2008, Information technology Open Systems Interconnection The Directory: Use of systems management for administration of the Directory. ITU-T Recommendation X.680 (2008) | ISO/IEC 8824-1:2008, Information technology Abstract Syntax Notation One (ASN.1): Specification of basic notation. IT
43、U-T Recommendation X.681 (2008) | ISO/IEC 8824-2:2008, Information technology Abstract Syntax Notation One (ASN.1): Information object specification. ITU-T Recommendation X.682 (2008) | ISO/IEC 8824-3:2008, Information technology Abstract Syntax Notation One (ASN.1): Constraint specification. ITU-T
44、Recommendation X.683 (2008) | ISO/IEC 8824-4:2008, Information technology Abstract Syntax Notation One (ASN.1): Parameterization of ASN.1 specifications. ISO/IEC 9594-9:2008 (E) 2 ITU-T Rec. X.525 (11/2008) 3 Definitions For the purposes of this Recommendation | International Standard, the following
45、 definitions apply. 3.1 Basic Directory definitions The following term is defined in ITU-T Rec. X.500 | ISO/IEC 9594-1: (the) Directory. 3.2 Directory model definitions The following terms are defined in ITU-T Rec. X.501 | ISO/IEC 9594-2: a) distinguished name; b) Directory Information Tree; c) DSA-
46、Specific Entry; d) DSA Information Model; e) DSA Information Tree; f) Directory System Agent. 3.3 Distributed operation definitions The following terms are defined in ITU-T Rec. X.518 | ISO/IEC 9594-4: a) access point; b) knowledge information; c) name resolution; d) naming context; e) non-specific
47、subordinate reference; f) subordinate reference. 3.4 Replication definitions The following terms are defined in this Recommendation | International Standard: 3.4.1 area prefix: The sequence of RDNs and associated administrative information common to all entries within a replicated area. 3.4.2 attrib
48、ute completeness: Indicates whether or not all user attributes are included in an entry-copy. 3.4.3 cache-copy: A copy of an entry (or part of an entry) whose consistency with its corresponding entry is maintained by means outside the scope of this Directory Specification. 3.4.4 caching: The process
49、 of creating cache copies. This process is outside the scope of this Directory Specification. 3.4.5 consumer reference: The access point of the shadow consumer. 3.4.6 entry-copy: Shadowed information from an entry. 3.4.7 extended knowledge: Those subordinate and non-specific subordinate references that would be included as subordinate knowledge if the replicated area were extended to the lower boundary of the naming context. 3.4.8 master DSA: The DSA
