Технический перевод

Языковая пара

Англо-русская

Тип работы

Технический перевод

Тематика

Информационные технологии: криптография

Инструкции и примечания:

Оригинал

Перевод

Комментарии
переводчика

Комментарии контролера

Грубые ошибки (смысл, терминология, стиль)

Незначительные ошибки (грамматика, орфография, адаптация)

ESS signing-certificate-v2 Attribute Definition

The ESS signing-certificate-v2 attribute is similar to the ESS signing-certificate defined above, except that this attribute can be used with hashing algorithms other than ISO hash.

The syntax of the signing-certificate-v2 attribute type of the ES is as defined in "ESS Update: Adding CertID Algorithm Agility", RFC 5035 [15], and further qualified in the present document.

The sequence of the policy information field is not used in the present document.

This attribute shall be used in the same manner as defined above for the ESS signing-certificate attribute.

The object identifier for this attribute is:

id-aa-signingCertificateV2 OBJECT IDENTIFIER ::= { iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs9(9) smime(16) id-aa(2) 47 }

If present, the issuerAndSerialNumber in SignerIdentifier field of the SignerInfo shall match the issuerSerial field present in ESSCertIDv2. In addition, the certHash from ESSCertIDv2 shall match the hash of the certificate computed using the hash function specified in the hashAlgorithm field. The certificate identified shall be used during the signature verification process. If the hash of the certificate does not match the certificate used to verify the signature, the signature shall be considered invalid. Implementations of the present document shall support the usage of both the signing-certificate attribute and the signing-certificate-v2 attribute, within timestamp tokens, in accordance with RFC 5035 [15].