| Class | Description |
|---|---|
| Attribute |
Ref.
|
| AttributeCertificateInfoV1 |
AttributeCertificateInfoV1 ::= SEQUENCE {
version AttCertVersionV1 DEFAULT v1,
subject Subject,
issuer GeneralNames,
signature AlgorithmIdentifier,
serialNumber CertificateSerialNumber,
attCertValidityPeriod AttCertValidityPeriod,
attributes SEQUENCE OF Attribute,
issuerUniqueID UniqueIdentifier OPTIONAL,
extensions Extensions OPTIONAL
}
AttCertVersionV1 ::= INTEGER { v1(0) }
|
| AttributeCertificateV1 |
AttributeCertificateV1 ::= SEQUENCE {
acInfo AttributeCertificateInfoV1,
signatureAlgorithm AlgorithmIdentifier,
signature BIT STRING
}
|
| AttributeCertificateV2 |
AttributeCertificateV2 ::= AttributeCertificate
|
| CertificateChoices |
CertificateChoices ::= CHOICE {
certificate Certificate,
extendedCertificate [0] IMPLICIT ExtendedCertificate, -- Obsolete
v1AttrCert [1] IMPLICIT AttributeCertificateV1, -- Obsolete
v2AttrCert [2] IMPLICIT AttributeCertificateV2,
other [3] IMPLICIT OtherCertificateFormat }
|
| CertificateSet |
CertificateSet ::= SET OF CertificateChoices
|
| CmsVersion | |
| CompressedContentInfo |
A ContentInfo that wraps CompressedData.
|
| CompressedData |
Ref.
|
| ContentEncryptionAlgorithmIdentifier |
ContentEncryptionAlgorithmIdentifier ::= AlgorithmIdentifier
|
| ContentInfo |
Ref.
|
| DigestAlgorithmIdentifier |
DigestAlgorithmIdentifier ::= AlgorithmIdentifier
|
| DigestAlgorithmIdentifiers |
DigestAlgorithmIdentifiers ::= SET OF DigestAlgorithmIdentifier
|
| EncapsulatedContentInfo |
EncapsulatedContentInfo ::= SEQUENCE {
eContentType ContentType,
eContent [0] EXPLICIT OCTET STRING OPTIONAL
}
ContentType ::= OBJECT IDENTIFIER
|
| EncryptedContentInfo |
EncryptedContentInfo ::= SEQUENCE {
contentType ContentType,
contentEncryptionAlgorithm ContentEncryptionAlgorithmIdentifier,
encryptedContent [0] IMPLICIT EncryptedContent OPTIONAL }
ContentType ::= OBJECT IDENTIFIER
EncryptedContent ::= OCTET STRING
|
| EncryptedKey |
EncryptedKey ::= OCTET STRING
|
| EnvelopedContentInfo |
A ContentInfo that wraps EnvelopedData.
|
| EnvelopedData |
EnvelopedData ::= SEQUENCE {
version CMSVersion,
originatorInfo [0] IMPLICIT OriginatorInfo OPTIONAL,
recipientInfos RecipientInfos,
encryptedContentInfo EncryptedContentInfo,
unprotectedAttrs [1] IMPLICIT UnprotectedAttributes OPTIONAL
}
OriginatorInfo ::= SEQUENCE {
certs [0] IMPLICIT CertificateSet OPTIONAL,
crls [1] IMPLICIT RevocationInfoChoices OPTIONAL
}
RecipientInfos ::= SET SIZE (1..MAX) OF RecipientInfo
EncryptedContentInfo ::= SEQUENCE {
contentType ContentType,
contentEncryptionAlgorithm ContentEncryptionAlgorithmIdentifier,
encryptedContent [0] IMPLICIT EncryptedContent OPTIONAL
}
EncryptedContent ::= OCTET STRING
UnprotectedAttributes ::= SET SIZE (1..MAX) OF Attribute
|
| ExtendedCertificate |
ExtendedCertificate ::= SEQUENCE {
extendedCertificateInfo ExtendedCertificateInfo,
signatureAlgorithm SignatureAlgorithmIdentifier,
signature Signature
}
|
| ExtendedCertificateInfo |
ExtendedCertificateInfo ::= SEQUENCE {
version CMSVersion,
certificate Certificate,
attributes UnauthAttributes
}
|
| IssuerAndSerialNumber |
Ref.
|
| KEKIdentifier |
KEKIdentifier ::= SEQUENCE {
keyIdentifier OCTET STRING,
date GeneralizedTime OPTIONAL,
other OtherKeyAttribute OPTIONAL }
|
| KEKRecipientInfo |
KEKRecipientInfo ::= SEQUENCE {
version CMSVersion, -- always set to 4
kekid KEKIdentifier,
keyEncryptionAlgorithm KeyEncryptionAlgorithmIdentifier,
encryptedKey EncryptedKey }
|
| KeyAgreeRecipientIdentifier |
KeyAgreeRecipientIdentifier ::= CHOICE {
issuerAndSerialNumber IssuerAndSerialNumber,
rKeyId [0] IMPLICIT RecipientKeyIdentifier }
|
| KeyAgreeRecipientInfo |
KeyAgreeRecipientInfo ::= SEQUENCE {
version CMSVersion, -- always set to 3
originator [0] EXPLICIT OriginatorIdentifierOrKey,
ukm [1] EXPLICIT UserKeyingMaterial OPTIONAL,
keyEncryptionAlgorithm KeyEncryptionAlgorithmIdentifier,
recipientEncryptedKeys RecipientEncryptedKeys }
UserKeyingMaterial ::= OCTET STRING
|
| KeyDerivationAlgorithmIdentifier |
KeyDerivationAlgorithmIdentifier ::= AlgorithmIdentifier
|
| KeyEncryptionAlgorithmIdentifier |
KeyEncryptionAlgorithmIdentifier ::= AlgorithmIdentifier
|
| KeyTransRecipientInfo |
KeyTransRecipientInfo ::= SEQUENCE {
version CMSVersion, -- always set to 0 or 2
rid RecipientIdentifier,
keyEncryptionAlgorithm KeyEncryptionAlgorithmIdentifier,
encryptedKey EncryptedKey }
|
| OriginatorIdentifierOrKey |
OriginatorIdentifierOrKey ::= CHOICE {
issuerAndSerialNumber IssuerAndSerialNumber,
subjectKeyIdentifier [0] SubjectKeyIdentifier,
originatorKey [1] OriginatorPublicKey }
|
| OriginatorInfo |
OriginatorInfo ::= SEQUENCE {
certs [0] IMPLICIT CertificateSet OPTIONAL,
crls [1] IMPLICIT RevocationInfoChoices OPTIONAL
}
|
| OriginatorPublicKey |
OriginatorPublicKey ::= SEQUENCE {
algorithm AlgorithmIdentifier,
publicKey BIT STRING }
|
| OtherCertificateFormat |
OtherCertificateFormat ::= SEQUENCE {
otherCertFormat OBJECT IDENTIFIER,
otherCert ANY DEFINED BY otherCertFormat
}
|
| OtherKeyAttribute |
OtherKeyAttribute ::= SEQUENCE {
keyAttrId OBJECT IDENTIFIER,
keyAttr ANY DEFINED BY keyAttrId OPTIONAL }
|
| OtherRecipientInfo |
OtherRecipientInfo ::= SEQUENCE {
oriType OBJECT IDENTIFIER,
oriValue ANY DEFINED BY oriType }
|
| OtherRevocationInfoFormat |
OtherRevocationInfoFormat ::= SEQUENCE {
otherRevInfoFormat OBJECT IDENTIFIER,
otherRevInfo ANY DEFINED BY otherRevInfoFormat
}
|
| PasswordRecipientInfo |
PasswordRecipientInfo ::= SEQUENCE {
version CMSVersion, -- always set to 0
keyDerivationAlgorithm [0] KeyDerivationAlgorithmIdentifier OPTIONAL,
keyEncryptionAlgorithm KeyEncryptionAlgorithmIdentifier,
encryptedKey EncryptedKey }
|
| RecipientEncryptedKey |
RecipientEncryptedKey ::= SEQUENCE {
rid KeyAgreeRecipientIdentifier,
encryptedKey EncryptedKey }
|
| RecipientEncryptedKeys |
RecipientEncryptedKeys ::= SEQUENCE OF RecipientEncryptedKey
|
| RecipientIdentifier |
RecipientIdentifier ::= CHOICE {
issuerAndSerialNumber IssuerAndSerialNumber,
subjectKeyIdentifier [0] SubjectKeyIdentifier
}
|
| RecipientInfo |
RecipientInfo ::= CHOICE {
ktri KeyTransRecipientInfo,
kari [1] KeyAgreeRecipientInfo,
kekri [2] KEKRecipientInfo,
pwri [3] PasswordRecipientInfo,
ori [4] OtherRecipientInfo }
|
| RecipientInfos |
RecipientInfos ::= SET SIZE (1..MAX) OF RecipientInfo
|
| RecipientKeyIdentifier |
RecipientKeyIdentifier ::= SEQUENCE {
subjectKeyIdentifier SubjectKeyIdentifier,
date GeneralizedTime OPTIONAL,
other OtherKeyAttribute OPTIONAL }
|
| RelativeDistinguishedName |
RelativeDistinguishedName ::= SET SIZE (1..MAX) OF AttributeTypeAndValue
|
| RevocationInfoChoice |
RevocationInfoChoice ::= CHOICE {
crl CertificateList,
other [1] IMPLICIT OtherRevocationInfoFormat
}
|
| RevocationInfoChoices |
RevocationInfoChoices ::= SET OF RevocationInfoChoice
|
| Signature |
Signature ::= BIT STRING
|
| SignatureAlgorithmIdentifier |
SignatureAlgorithmIdentifier ::= AlgorithmIdentifier
|
| SignatureValue |
SignatureValue ::= OCTET STRING
|
| SignedAttributes |
SignedAttributes ::= SET SIZE (1..MAX) OF Attribute
|
| SignedContentInfo |
A ContentInfo that wraps SignedData.
|
| SignedData |
Ref.
|
| SignerIdentifier |
Ref.
|
| SignerInfo |
Ref.
|
| SignerInfos |
SignerInfos ::= SET OF SignerInfo
|
| Subject |
subject CHOICE {
baseCertificateID [0] IssuerSerial,
-- associated with a Public Key Certificate
subjectName [1] GeneralNames
-- associated with a name
},
|
| UnprotectedAttributes |
UnprotectedAttributes ::= SET SIZE (1..MAX) OF Attribute
|
| UnsignedAttributes |
UnsignedAttributes ::= SET SIZE (1..MAX) OF Attribute
|
Copyright © 2014–2022 The Apache Software Foundation. All rights reserved.