Overview[1]#

X.500 is a series of computer networking standards covering electronic Directory Services.

The X.500 series was developed by ITU-T, formerly known as CCITT. The Directory Services were developed in order to support the requirements of X.400 electronic mail exchange and name lookup. ISO was a partner in developing the standards, incorporating them into the Open Systems Interconnection suite of protocols. ISO/IEC 9594 is the corresponding ISO identification.

LDAP vs X.500#

This architectural argument would pack networking conference sessions, divide the room and ignite heated shouting matches in the early-to-mid-1990s. It was a case of the student overtaking the mentor as the Lightweight Directory Access Protocol was at first a simple alternative to X.500’s Directory Access Protocol (DAP). LDAP was used for accessing X.500 directories via the TCP/IP protocol. With the advent of the Internet and its reliance on TCP/IP, X.500 faded into the background even though it was later modified for use over TCP/IP.

"The market was screaming for a standard client protocol" in 1999, LDAP co-inventor Tim Howes told Network World in 2002.

X.500 didn’t have it. In addition, X.500, developed in the 1980s with input from telecom firms, required an OSI stack and an X.500 Server.

To go with the client protocol, LDAP Directory Servers soon popped up that had vestiges of X.500 still lurking in their depths. But like villagers in the comedy classic “Monty Python and the Holy Grail,” X.500 is not dead yet.

Some of its supporting protocols remain important directory security constructs, namely the X.509 authentication framework that is the cornerstone of PKI-based certificates. And LDAP has had its own evolutionary issues. LDAPv3, the last iteration of the protocol, lacks widely adopted access control and back-end integration extensions, namely replication, that have kept the protocol largely behind the firewall.

More Information#

There might be more information for this subject on one of the following:

• Active Directory Service Interfaces
• AliasedEntryName
• AssociatedInternetGateway
• BMPString
• Binary Encoding Option
• Cn
• CommonName
• Cooperation for Open Systems Interconnection Networking in Europe
• Country Code
• DIXIE
• DN Syntax
• Directory Access Protocol
• Directory Information Tree
• Directory System Agent
• Directory User Agent
• DirectoryComponentsMatch
• Distinguished Names
• EDirectory Common Event Format
• EDirectory Synchronization
• FriendlyCountryName
• GeneralString
• Glossary Of LDAP And Directory Terminology
• GraphicString
• History of LDAP
• HomePhone
• IA5String
• Isode Limited
• Kim Cameron
• LDAP Directory Information Models
• LDAPv3
• Lightweight Directory Access Protocol (LDAP) entryUUID Operational Attribute
• Microsoft Active Directory
• NamingContext
• OID
• OR-Name
• ObjectIdentifierMatch
• OpenAssertionType
• OrganizationalUnitName
• Piloting a Research Directory in an OSI Environment
• Public Key Infrastructure
• QUIPU
• RFC 2079
• RFC 2164
• RFC 2247
• RFC 2256
• RFC 2293
• RFC 3687
• String Representation of Distinguished Names
• TeletexString
• The COSINE and Internet X.500 Schema
• UTCTime
• UTF8String
• UniversalString
• VideotexString
• VisibleString
• X.500
• X.501

---

• [#1] - X.500 - based on information obtained 2013-04-10