The CertPath classes currently use byte and Strings to represent distinguished names. This is less efficient and less convenient than using the X500Principal class. X500Principal based methods should be added where possible.
This would affect the classes X509CertSelector, X509CRLSelector, and TrustAnchor.
BugTraq+ Release Management Values
COMMIT TO FIX: