[Top] [All Lists]

Re: Encryption Cert OID

2001-10-08 20:55:46

Eric Norman <ejnorman(_at_)doit(_dot_)wisc(_dot_)edu> writes:

It's an OID that's used by Outlook Express to include the senders preferred
encryption key among the bunch of certificates that are sent in a PKCS7
signedData structure. The OID is (seems to be in
Microsoft's arc).  It is used as an authenticated attribute; the idea seems to
be the same as SMIMEEncryptionKeyPreference (OID = 1.2.840.113549.
The syntax is sligtly different; it "points to" the actual certificate with
only IssuerAndSerialNumber; i.e. no CHOICE; no IMPLICIT tag.

It looks like you're using an old version of dumpasn1, this is already present
in the config:

-- Snip --

# This is just the normal issuerAndSerialNumber but with a MS-specific OID.
# Apparently it's used for CryptEncode/DecodeObject, whatever that is.
OID = 06 0A 2B 06 01 04 01 82 37 10 04
Comment = Microsoft attribute
Description = microsoftRecipientInfo (1 3 6 1 4 1 311 16 4)

-- Snip --

There's an OID that seems like it should appear in

I think that's reserved specifically for S/MIME-related OIDs, not for any
random OID which a vendor might choose to invent.


<Prev in Thread] Current Thread [Next in Thread>