[Top] [All Lists]

flexibility of the ESSCertID field

2005-11-08 07:04:36

Jim Schaad presented a concern about the algorithm flexibility of the 
ESSCertID field. Right now this field is limited to the use of the SHA-1 
algorithm, and Jim proposed the addition of an AlgorithmIdentifier to 
indicate the digest algorithm used to prepare the digest. 

OtherSigningCertificate, as defined in RFC 3126, could be used for that purpose 

id-aa-ets-otherSigCert OBJECT IDENTIFIER ::= 
{ iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs9(9)
  smime(16) id-aa(2) 19 }

RFC 3126 was anticipating the need to use other algorithms.


<Prev in Thread] Current Thread [Next in Thread>