[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: encoding an X.509 certificate

Title: RE: encoding an X.509 certificate
Tom:
 
From my pont of view, the X.509 standard assumes DER encoding for certificates.
 
I'm not shure if it mandates DER, but the certificate concept is applied in other
standards such as ISO 9735 (EDIFACT), where a series of "segments" represent the serial number,
the issuer name, the validity period, the subject names, the public key and the signature
- including algorithms for digest and signature.
 
In EDIFACT there are no attributes.  We have software that "converts" from DER encoding to
EDIFACT (using of course, aditional attributes that contain the EDIFACT signature and parameters)
 
About how to distinguish a DER encoding from a Base64 encoding, you can analize the
first three bytes:
 
1. If first byte is "0" (0x30) it is likely to be DER encoded (possibly BER/CER.  More analysis would be needed)
2. If first bytes are "MII" (0x4D, 0x49, 0x49) it is likely to be Base64 containing a DER/BER/CER encoded certificate
      More analysis would be needed to determine DER/BER/CER encoding
3. If first bytes are "USC" it is likely to be an EDIFACT Public Key (let's call it an "EDIFACT certificate")
4. If first byte were "<" (0x3c) it would be likely to be an XML encoded certificate (does it exist?, I don't know...)
 
Juan
SeguriDATA

De: owner-ietf-pkix@xxxxxxxxxxxx en nombre de Kemp, David P.
Enviado el: jue 06/11/2008 01:21
Para: Tom Scavo; pkix
Asunto: RE: encoding an X.509 certificate


There is no header ("magic bits") at the beginning of an encoded
transfer string, so there is not a deterministic mechanism for
determining an arbitrary encoding.  However, heuristically it is trivial
to examine a transfer string and determine that it is a) BER/DER/CER
encoded, b) XER endoded, or c) PER encoded.  In practice, if you were
given an X.509 certificate of unknown encoding, there is only one
encoding that it could possibly be (DER) because no other encoding is
ever used.  Because the signature is computed over the DER-encoded
transfer string, a certificate in any other format would need to be
re-encoded into DER before validating the signature, and that's too much
effort for most applications.

Dave


-----Original Message-----
From: owner-ietf-pkix@xxxxxxxxxxxx [mailto:owner-ietf-pkix@xxxxxxxxxxxx]
On Behalf Of Tom Scavo
Sent: Thursday, November 06, 2008 12:49 PM
To: pkix
Subject: encoding an X.509 certificate


I've asked the following question in a number of forums with no luck.
I'm hoping someone with intimate knowledge of ASN.1 encodings can help
me out here.  Many thanks in advance.

Currently there are three profiles before the OASIS Security Services
Technical Committee (SSTC) that rely on XML elements of the form:

<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
 <ds:X509Data>
   <ds:X509Certificate>
MII...
   </ds:X509Certificate>
 </ds:X509Data>
</ds:KeyInfo>

Interestingly, the above element has sparked a vigorous debate within
the SSTC, which has since spread to the W3C XML Signature WG.  The
issue involves the ASN.1 encoding of the underlying certificate (which
is base64 encoded in the XML).  Specifically, should the certificate
be DER-encoded or should the encoding be left unspecified?

So my question is:  If you were given an X.509 certificate of unknown
encoding, could you determine the encoding by simply inspecting the
bytes?  Does your favorite ASN.1 library support such a function?

Thanks for shedding some light on this issue.

Tom Scavo
NCSA