Paul --
Just a clarification on your use of the term "null":
md2WithRSAEncryption defines the parameter to have ASN.1 type NULL, which is
encoded in DER as 05 00. As you observe, md2WithRSAEncryption requires the
parameter field; it cannot be absent.
The certificate list field of a CRL is an optional field. If the field is
present, there must be certificates in the list. By recent agreement, if
there
are no certificates in the list, the list must be omitted. But in no case
would
this involve the ASN.1 type NULL; in no case would there be an 05 00
encoding.
Is this on the mark?
Burt,
You are correct. If one wished to explicitly encode a NULL SEQUENCE
I believe the encoding is "48 00" not "05 00" which is the encoding
for a primitive null.
P.C.
---------------------------------
Paul Clark
Trusted Information Systems, Inc.
3060 Washington Road
Glenwood, MD 21738
E-Mail: paul(_at_)tis(_dot_)com
Phone: 301.854.6889
FAX: 301.854.5363
---------------------------------