pem-dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Cert signatures in 1114 draft

1992-03-17 12:08:00
from [Jeff Thompson] [Permanent Link] 

In section A.1 in the latest 1114 draft:

   There is also some
   ambiguity in X.509 with regard to the representation of a signed
   value, e.g., a certificate signature.  The interpretation selected in
   PEM requires that the data to be signed is first ASN.1 encoded as an
   OCTET STRING and the result is encrypted to form the signed quantity,
   which is then ASN.1 encoded as an OCTET STRING.


The method of formatting the signature block for encryption with a
private key belongs in RFC 1115 where the algorithms are defined,
especially since the technique described above is incompatible with
the md2WithRSAEncryption signature algorithm defined there.

- Jeff
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Cert signatures in 1114 draft, Jeff Thompson <=
Previous by Date:  1114 draft, Jeff Thompson
Next by Date:  Mailing List, Elise A. Locker
Previous by Thread:  1114 draft, Jeff Thompson
Next by Thread:  RFC 1114 Certificate Encoding, Richard . Ankney
Indexes:  [Date] [Thread] [Top] [All Lists]