[xmlsec] RE: FW: X509SerialNumber

Rich Salz rsalz at datapower.com
Sat Sep 4 15:52:08 PDT 2004

> Does the X509SerialNumber node within the X509IssuerSerial node, *NOT* refer
> to the serial number for the issuer certificate?
> <X509IssuerSerial> 
> 	<X509IssuerName>My CA for Certificate A</X509IssuerName>
> 	<X509SerialNumber>12345678</X509SerialNumber>
> </X509IssuerSerial>

No.  It means "the serial number for the certificate that has been 
assigned *by* the issuer." A "clue" is that they call it "serial number" 
but "*issuer* name."  If you know about X.509, then the meaning is 
obvious.  The spec could be more clear here.

Rich Salz, Chief Security Architect
DataPower Technology                           http://www.datapower.com
XS40 XML Security Gateway   http://www.datapower.com/products/xs40.html
XML Security Overview  http://www.datapower.com/xmldev/xmlsecurity.html

More information about the xmlsec mailing list