📄 rfc1943.txt
字号:
6.9 Conclusion
Establishing a Directory service within an organization will involve
a great deal of cooperative effort. It is essential to get commitment
from the integral parties of an organization at the onset. This
includes the technical, legal, and data managements components of the
organization. Executive level commitment will make it much easier to
get the cooperation necessary.
Operational procedures must be clearly defined, as the inclusion in a
globally distributed service has wide visibility. Adherence to these
procedures must be maintained to the highest degree possible as
misinformation may result in unintentional legal violations and
unreliable access or data can adversely affect on a companys
reputation.
An X.500 Directory can be extremely useful for an organization if it
operates as designed. It may serve as the "hub" of the information
routing and the basis for several everyday activities. A successful
service will be one of the most important tools for communication in
the computer network environment. For people to make use of the
service, they must be able to rely on consistent and accurate
information.
Jennings Informational [Page 17]
RFC 1943 Building an X.500 Directory Service in the US May 1996
References
1. CCITT Blue Book, Volume VIII - Fascicle VIII.8, November 1988.
2. RFC 1632; A Revised Catalog of Available X.500
Implementations. A. Getchell; ESnet, S.
Sataluri; AT&T.
3. RFC 1274; The COSINE and Internet X.500 Schema. P. Barker &
S. Kille.
4. CCITT Blue Book, Volume VIII - Fascicle VIII - Rec. X.509,
November 1988.
5. RFC 1295; User Bill of Rights for entries and listing in the
Public Directory. Networking Working Group; IETF, January
1992.
6. STD 35, RFC 1355; Privacy and Accuracy Issues in Network
Information Center Databases. Curran, Marine, August 1992.
7. RFC 1006, ISO Transport Class 2 Non-use of Explicit Flow
Control over TCP RFC 1006 extension. Y. Pouffary, June 1995.
8. Colin Robbins, NEXOR Ltd., Nottingham, London.
c.robbins@nexor.co.uk
9. InterNIC; Collaborative effort of AT&T and
Network Solutions; info@internic.net
10. ESnet; Managed and funded by the US Department of Energys
Energy Research Office in Scientific Computing (DOE/ER/OSC).
11. RFC 1777; Lightweight Directory Access Protocol, W. Yeong,
T. Howes, S. Kille, March 1995.
12. Building a Directory Service, Final Report test phase SURFnet
X.500 pilot project, June 1995.
13. The X.500 Directory Services: a discussion of the concerns
raised by the existence of a global Directory, Julia M. Hill,
Vol.2/No.1 Electronic Networking, Spring 1992.
14. Directory Services and Privacy Issues, E. Jeunik and E.
Huizer.
Jennings Informational [Page 18]
RFC 1943 Building an X.500 Directory Service in the US May 1996
15. The Little Black Book; Mail Bonding with OSI Directory
Services, Marshall T. Rose, Simon & Schuster Company,
1992.
16. NYSERNet White Pages Pilot Project: Status Report; NYSERNet
Technical Report #89-12-31-1, Marshall T. Rose, December 1989.
17. RFC 1798, Connection-less Lightweight Directory Access
Protocol, A. Young, June 1995.
18. RFC 1781; Using the OSI Directory to Achieve User Friendly
Naming, S. Kille, March 1995.
19. draft-ietf-pds-iwps-design-spec-01.txt, Tony Genovese;
Microsoft, Work in Progress, July 1995.
20. draft-ietf-ids-privacy-00.txt, B. Jennings; Sandia National
Laboratories, S. Sataluri; AT&T, Work in Progress, November
1994.
Glossary
ACL Access Control List; a mechanism to restrict access to data
stored in an X.500 Directory Service
Attribute A collection of attributes belong to an entry in the
Directory Service, and contain information belonging
to that entry.
c= countryName; Object class definition, specifies a country.
When used as part of the directory name, it identifies the
country in which the named object is physically located.
cn= commonName; Attribute defining common name for individuals
included in a directory. In 1988 standards can be up to 64
characters.
CCITT The International Telegraph and Telephone Consultative
Committee.
DAP Directory Access Protocol; the protocol between a DUA and a
DSA.
DIB Directory Information Base; a collection of information
objects in the Directory.
DIT Directory Information Tree; the hierarchy of the distributed
database that makes up an X.500 service.
Jennings Informational [Page 19]
RFC 1943 Building an X.500 Directory Service in the US May 1996
DSA Directory System Agent; an application that offers the
Directory service, this is the database for the Directory.
DUA Directory User Agent; an application that facilitates User
access to a DSA.
E-Mail Electronic Mail. Entry A Directory Service contains entries
on people, organizations, countries, etc. Entries belong to a
certain class, and information on entries is stored in
attributes.
ESnet Energy Sciences Network; nationwide computer data
communications network.
GUI Graphical User Interface.
IETF Internet Engineering Task Force; an internationally
represented task force charged with solving the short-term
needs of the Internet
Internet A collection of connected networks, international,
running the Internet suite of protocols.
InterNIC Directory of Directories, a collaborative project
between AT&T, and Network Solutions, Inc.
IP Internet Protocol; the network protocol offering a
conectionless-mode network service in the Internet suite of
protocols.
ISODE ISO Development Environment, a research tool developed to
study the upper-layers of OSI and deploy network applications
according to the ISO OSI standards and ITU X series of
recommendations.
ITU International Telecommunication Union; formerly the CCITT.
LDAP Lightweight Directory Access Protocol, an Internet Standard
for a lightweight version of DAP running over TCP/IP.
Object Entries in a Directory Service belong to an Object Class to
Class indicate the type and characteristic; e.g. Object Class
"person".
OSI Open Standards Interconnection, An international
standardization program, facilitated by ISO and ITU to develop
standards for data networking.
Jennings Informational [Page 20]
RFC 1943 Building an X.500 Directory Service in the US May 1996
o= organization; An attribute defining the company or
organization that the person works for.
ou= organizational unit; An attribute found under organization.
Denotes the department, division, or other such sub-unit of
the organization that the person works in.
PEM Privacy Enhanced Mail; and Internet Standard for sending
secure Electronic mail.
PSI Performance Systems International, Inc.; operator of the
Internet White Pages Project
QUIPU X.500 Directory implementation developed by Colin Robbins
while at the University College of London.
RDN Relative Distinguished Name; a unique identifier for each list
subject, defined by the hierarchy of the DSA.
RFC Request For Comments; Internet series publications
sn= surname; Attribute defining the surname of the person in the
directory.
TCP/IP Transmission Control Protocol and Internet Protocol; two
internet protocols.
White-Pages Electronic directory, accessible via Internet suite of
protocols.
Whois An Internet standard protocol.
Whois++ An Internet Directory Services protocol; a possible
alternative for X.500 WPS
White Pages Service a Directory Service that contains information on
people and organizations.
X.500 A series of recommendations as defined by the ITU, that
specify a Directory Services protocol.
Jennings Informational [Page 21]
RFC 1943 Building an X.500 Directory Service in the US May 1996
9.0 Security Considerations
Security issues are not discussed in this memo.
Author's Address
Barbara Jennings
Sandia National Laboratories
Scientific Computing Systems
P.O. Box 5800
M/S 0807
Albuquerque, NM 87106
USA
Phone: 505-845-8554
Fax: 505-844-2067
EMail: jennings@sandia.gov
Jennings Informational [Page 22]
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -