The EPCglobal Architecture allows the use of a variety of
authentication technologies, but it is expected that X.509 authentication framework will be
widely employed. This speci?¬?cation de?¬?nes a pro?¬?le of X.509 certi?¬?cate, based on two
Internet standards, de?¬?ned in the IETF??™s PKIX Working Group, RFC3280??”Internet X.509
Public Key Infrastructure Certi?¬?cate and Certi?¬?cate Revocation List (CRL) Pro?¬?le and RFC
3279??”Algorithms and Identi?¬?ers for the Internet X.509 Public Key Infrastructure Certi?¬?-
cate and CRL Pro?¬?le. The pro?¬?le supports the RSA asymmetric algorithm, with key lengths
of 1024 (before 2010), 2048 (before 2030), and 3072 (after 2030).
30 RFID Handbook: Applications, Technology, Security, and Privacy
2.12 Object Naming Service
The Object Naming Service (EPCglobal, 2005e) speci?¬?es how the Domain Name System
(DNS) is used to locate authoritative metadata and services associated with a given EPC. It
provides a service that returns a list of network addresses that may contain pertinent data
about the EPC. ONS is also authoritative in that the entity that has change control over the
information about the EPC is the same entity that assigned the EPC to the item to begin
with. This is different to the Discovery Service (which is not universally authoritative) as it
returns locations that have some data related to an EPC, and may contain pointers to
entities other than the entity that originally assigned the EPC code.
Pages:
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87