Paul,
DigitalNet completed our testing of the "Examples of S/MIME Messages"
Internet-Draft. DigitalNet used the S/MIME Freeware Library (SFL) to
successfully process (i.e. decode, verify, decrypt) the samples in the
"Examples-13" I-D.
We hit the same problems with tests 4.9 and 5.3 that Holger Ebel
reported earlier. We re-tested with the corrected examples he sent out
and all tests now pass.
See below for the specific test results.
- Rich
-----------------------------
Richard E. Nicholas
Secure Systems Consultant
DigitalNet Government Solutions, LLC
Richard(_dot_)Nicholas(_at_)DigitalNet(_dot_)com
(301) 939-2722
Test Results:
(Note: Test numbers correspond to Examples-13 sections 3 through 7.)
3. ContentInfo Tests
3.1 ContentInfo with Data type, BER: Successfully ASN.1 decoded the
BER-encoded ContentInfo sample in Examples document using SFL.
3.2 ContentInfo with Data type, DER: Successfully ASN.1 decoded the
DER-encoded ContentInfo sample in Examples document using SFL.
4. Signed-Data Tests
4.1 Basic signed content, DSS: Successfully verified signature of
sample in Examples document using SFL.
4.2 Basic signed content, RSA: Successfully verified signature of
sample in Examples document using SFL.
4.3 Basic signed content, detached content: Successfully verified
signature of sample in Examples document using SFL.
4.4 Fancier Signed Content: Successfully verified signature of
sample in Examples document using SFL.
4.5 All RSA signed message: Successfully verified signature of
sample in Examples document using SFL.
4.6 Multiple Signers: Successfully verified both of the signatures
in the sample in the Examples document using SFL.
4.7 Signing using SKI: Successfully verified signature of sample in
Examples document using SFL.
4.8 S/MIME multipart/signed message: Successfully verified signature
of sample in Examples document using SFL.
4.9 S/MIME application/pkcs7-mime signed message: Unsuccessful.
There was a problem with 4.9 - The SFL does not recognize that the
message is a signedData message because of the data error in the
original message. Re-tested with the changes that Holger Ebel made.
The test ran successfully and verified the signature.
4.10 SignedData with Attributes: Successfully verified signature of
sample in Examples document using SFL.
4.11 SignedData with Certificates only: Successfully processed
sample in Examples document using SFL.
5. Enveloped-data Tests
5.1. Basic encrypted content, TripleDES and RSA: Successfully
decrypted sample in Examples document using SFL.
5.2. Basic encrypted content, RC2/128 and RSA: Successfully
decrypted sample in Examples document using SFL.
5.3. S/MIME application/pkcs7-mime encrypted message: Successfully
decrypted sample in Examples document using SFL. Re-tested with the
changes made by Holger Ebel. That message also successfully decrypted
using the SFL.
6. Digested-Data Tests - SFL does not support.
6.0 Successfully used SFL to error out gracefully upon processing
sample in Examples document.
7. Encrypted-Data Tests
7.1 Simple EncryptedData: Successfully decrypted sample in Examples
document using SFL.
7.2 EncryptedData with unprotected attributes: Successfully
decrypted sample in Examples document using SFL.