[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: Re: [xcbf] XCBF-OIDs - PKCS #7
I'll add these later to our useful documents list
on the web page, but the RSA PKCS standards are
free on the web. We're primarily interested in
PKCS #9 and PKCS #7, although for 7 we will use
the schema defined in X9.73 that follows the
processing semantics of the IETF SMIME standard
and X9.96 being progressed in X9F3 right now.
http://www.rsasecurity.com/rsalabs/pkcs/pkcs-7/
http://www.rsasecurity.com/rsalabs/pkcs/pkcs-9/
http://www.ietf.org/html.charters/smime-charter.html
You might want to actually read through 9 and see
if there are any attributes and OIDs you might like
to see in our XCBF-OIDs schema.
Phil
Phil Griffin wrote:
>
> Related to my last message on CMS, I've also
> created an OID module where we can isolate but
> define some of the OIDs and associated types
> and information object sets we'll need to
> flesh out the CMS module so that it can be
> implemented.
>
> Again, I'll post an updated version once I have
> cleaned this up a bit and run it through Bancroft's
> syntax checker.
>
> Phil
>
> --
> -- Revised: Saturday, May 11, 2002
> --
> -- Last Modified: Saturday, May 11, 2002
> --
> -- The following ASN.1 is based on the module found in the
> -- ANS X9.84 Biometric Information Management and Security
> -- standard. It has been modified for use in the OASIS XML
> -- Common Biometric Standard (XCBF)
>
> XCBF-OIDs -- { Need OID here } --
> DEFINITIONS IMPLICIT TAGS ::= BEGIN
>
> -- EXPORTS All;
>
> IMPORTS
>
> ALGORITHM
> FROM XCBF-CMS -- { Need OID here } -- ;
>
> sha1 OBJECT IDENTIFIER ::= {
> iso(1) identified-organization(3) oiw(14)
> secsig(3) algorithms(2) 26
> }
>
> -- X9.57 DSA signature generated with SHA-1 hash
>
> dsa-with-sha1 OBJECT IDENTIFIER ::= {
> iso(1) member-body(2) us(840) x9-57 (10040) x9algorithm(4) 3 }
>
> -- RSA PKCS #1 public key and signatures
>
> pkcs-1 OBJECT IDENTIFIER ::= {
> iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) 1 }
>
> -- RSA public keys
>
> rsaEncryption OBJECT IDENTIFIER ::= { pkcs-1 1 }
>
> -- RSA signature generated with SHA-1 hash
>
> sha1WithRSAEncryption OBJECT IDENTIFIER ::= { pkcs-1 5 }
>
> -- X9.42 Diffie-Hellman Keys
>
> dhpublicnumber OBJECT IDENTIFIER ::= {
> iso(1) member-body(2) us(840) ansi-x942(10046) number-type(2) 1 }
>
> -- X9.62 Elliptic Curve Keys, Signatures, and Curves
>
> ansi-X9-62 OBJECT IDENTIFIER ::= {
> iso(1) member-body(2) us(840) ansi-x962(10045) }
>
> -- X9.62 ECDSA signatures with SHA-1
>
> ecdsa-with-SHA1 OBJECT IDENTIFIER ::= { ansi-X9-62 signatures(4) 1 }
>
> -- X9.62 Named elliptic curves
>
> -- PHG Need to pick two from below; should choose the
> -- two used in ECheck and delete the rest below then
> -- then fill out the EllipiticCurves set
>
> EllipiticCurves ALGORITHM { ... }
>
> ellipticCurve OBJECT IDENTIFIER ::= { ansi-X9-62 curves(3) }
>
> c-TwoCurve OBJECT IDENTIFIER ::= {
> ellipticCurve characteristicTwo(0) }
>
> c2pnb163v1 OBJECT IDENTIFIER ::= { c-TwoCurve 1 }
> c2pnb163v2 OBJECT IDENTIFIER ::= { c-TwoCurve 2 }
> c2pnb163v3 OBJECT IDENTIFIER ::= { c-TwoCurve 3 }
> c2pnb176w1 OBJECT IDENTIFIER ::= { c-TwoCurve 4 }
> c2tnb191v1 OBJECT IDENTIFIER ::= { c-TwoCurve 5 }
> c2tnb191v2 OBJECT IDENTIFIER ::= { c-TwoCurve 6 }
> c2tnb191v3 OBJECT IDENTIFIER ::= { c-TwoCurve 7 }
> c2onb191v4 OBJECT IDENTIFIER ::= { c-TwoCurve 8 }
> c2onb191v5 OBJECT IDENTIFIER ::= { c-TwoCurve 9 }
> c2pnb208w1 OBJECT IDENTIFIER ::= { c-TwoCurve 10 }
> c2tnb239v1 OBJECT IDENTIFIER ::= { c-TwoCurve 11 }
> c2tnb239v2 OBJECT IDENTIFIER ::= { c-TwoCurve 12 }
> c2tnb239v3 OBJECT IDENTIFIER ::= { c-TwoCurve 13 }
> c2onb239v4 OBJECT IDENTIFIER ::= { c-TwoCurve 14 }
> c2onb239v5 OBJECT IDENTIFIER ::= { c-TwoCurve 15 }
> c2pnb272w1 OBJECT IDENTIFIER ::= { c-TwoCurve 16 }
> c2pnb304w1 OBJECT IDENTIFIER ::= { c-TwoCurve 17 }
> c2tnb359v1 OBJECT IDENTIFIER ::= { c-TwoCurve 18 }
> c2pnb368w1 OBJECT IDENTIFIER ::= { c-TwoCurve 19 }
> c2tnb431r1 OBJECT IDENTIFIER ::= { c-TwoCurve 20 }
>
> primeCurve OBJECT IDENTIFIER ::= { ellipticCurve prime(1) }
>
> prime192v1 OBJECT IDENTIFIER ::= { primeCurve 1 }
> prime192v2 OBJECT IDENTIFIER ::= { primeCurve 2 }
> prime192v3 OBJECT IDENTIFIER ::= { primeCurve 3 }
> prime239v1 OBJECT IDENTIFIER ::= { primeCurve 4 }
> prime239v2 OBJECT IDENTIFIER ::= { primeCurve 5 }
> prime239v3 OBJECT IDENTIFIER ::= { primeCurve 6 }
> prime256v1 OBJECT IDENTIFIER ::= { primeCurve 7 }
>
> pkcs7 OBJECT IDENTIFIER ::= {
> iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs7(7) }
>
> id-data OBJECT IDENTIFIER ::= { pkcs7 data(1) } -- PHG Needed???
>
> id-signedData OBJECT IDENTIFIER ::= { pkcs7 signedData(2) }
>
> id-envelopedData OBJECT IDENTIFIER ::= { pkcs7 envelopedData (3) }
>
> id-digestedData OBJECT IDENTIFIER ::= {
> pkcs7 digestedData(5) } -- PHG Needed ???
>
> id-encryptedData OBJECT IDENTIFIER ::= { pkcs7 encryptedData (6) }
>
> pkcs9 OBJECT IDENTIFIER ::= {
> iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs9(9) }
>
> -- Signed attributes --
>
> -- PHG May wish to include others that are
> -- useful such as signing time
>
> id-contentType OBJECT IDENTIFIER ::= { pkcs9 contentType(3) }
> id-messageDigest OBJECT IDENTIFIER ::= { pkcs9 messageDigest(4) }
>
> END -- XCBF-OIDs --
>
> ----------------------------------------------------------------
> To subscribe or unsubscribe from this elist use the subscription
> manager: <http://lists.oasis-open.org/ob/adm.pl>
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC