]>
Commit | Line | Data |
---|---|---|
f9d183c2 RL |
1 | # CCITT was renamed to ITU-T quite some time ago |
2 | 0 : ITU-T : itu-t | |
3 | !Alias ccitt itu-t | |
64b48877 | 4 | |
c2bbf9cf | 5 | 1 : ISO : iso |
622ec449 | 6 | |
f9d183c2 RL |
7 | 2 : JOINT-ISO-ITU-T : joint-iso-itu-t |
8 | !Alias joint-iso-ccitt joint-iso-itu-t | |
4b125068 | 9 | |
c2bbf9cf | 10 | iso 2 : member-body : ISO Member Body |
622ec449 | 11 | |
36c19463 BM |
12 | iso 3 : identified-organization |
13 | ||
afc580b9 P |
14 | # GMAC OID |
15 | iso 0 9797 3 4 : GMAC : gmac | |
6e624a64 | 16 | |
86140095 LJ |
17 | # HMAC OIDs |
18 | identified-organization 6 1 5 5 8 1 1 : HMAC-MD5 : hmac-md5 | |
19 | identified-organization 6 1 5 5 8 1 2 : HMAC-SHA1 : hmac-sha1 | |
20 | ||
0c9d6818 F |
21 | # "1.3.36.8.3.3" |
22 | identified-organization 36 8 3 3 : x509ExtAdmission : Professional Information or basis for Admission | |
23 | ||
36c19463 BM |
24 | identified-organization 132 : certicom-arc |
25 | ||
5cd42251 P |
26 | identified-organization 111 : ieee |
27 | ieee 2 1619 : ieee-siswg : IEEE Security in Storage Working Group | |
28 | ||
f9d183c2 RL |
29 | joint-iso-itu-t 23 : international-organizations : International Organizations |
30 | ||
31 | international-organizations 43 : wap | |
cab6de03 | 32 | wap 1 : wap-wsg |
1d284535 | 33 | |
f9d183c2 | 34 | joint-iso-itu-t 5 1 5 : selected-attribute-types : Selected Attribute Types |
4b125068 RL |
35 | |
36 | selected-attribute-types 55 : clearance | |
37 | ||
c2bbf9cf RL |
38 | member-body 840 : ISO-US : ISO US Member Body |
39 | ISO-US 10040 : X9-57 : X9.57 | |
40 | X9-57 4 : X9cm : X9.57 CM ? | |
41 | ||
3d328a44 JL |
42 | member-body 156 : ISO-CN : ISO CN Member Body |
43 | ISO-CN 10197 : oscca | |
44 | oscca 1 : sm-scheme | |
45 | ||
c2bbf9cf RL |
46 | !Cname dsa |
47 | X9cm 1 : DSA : dsaEncryption | |
48 | X9cm 3 : DSA-SHA1 : dsaWithSHA1 | |
49 | ||
14f7ee49 BM |
50 | |
51 | ISO-US 10045 : ansi-X9-62 : ANSI X9.62 | |
52 | !module X9-62 | |
53 | !Alias id-fieldType ansi-X9-62 1 | |
54 | X9-62_id-fieldType 1 : prime-field | |
55 | X9-62_id-fieldType 2 : characteristic-two-field | |
2d9b1b3f BM |
56 | X9-62_characteristic-two-field 3 : id-characteristic-two-basis |
57 | X9-62_id-characteristic-two-basis 1 : onBasis | |
58 | X9-62_id-characteristic-two-basis 2 : tpBasis | |
59 | X9-62_id-characteristic-two-basis 3 : ppBasis | |
14f7ee49 BM |
60 | !Alias id-publicKeyType ansi-X9-62 2 |
61 | X9-62_id-publicKeyType 1 : id-ecPublicKey | |
62 | !Alias ellipticCurve ansi-X9-62 3 | |
63 | !Alias c-TwoCurve X9-62_ellipticCurve 0 | |
2d9b1b3f BM |
64 | X9-62_c-TwoCurve 1 : c2pnb163v1 |
65 | X9-62_c-TwoCurve 2 : c2pnb163v2 | |
66 | X9-62_c-TwoCurve 3 : c2pnb163v3 | |
67 | X9-62_c-TwoCurve 4 : c2pnb176v1 | |
68 | X9-62_c-TwoCurve 5 : c2tnb191v1 | |
69 | X9-62_c-TwoCurve 6 : c2tnb191v2 | |
70 | X9-62_c-TwoCurve 7 : c2tnb191v3 | |
71 | X9-62_c-TwoCurve 8 : c2onb191v4 | |
72 | X9-62_c-TwoCurve 9 : c2onb191v5 | |
73 | X9-62_c-TwoCurve 10 : c2pnb208w1 | |
74 | X9-62_c-TwoCurve 11 : c2tnb239v1 | |
75 | X9-62_c-TwoCurve 12 : c2tnb239v2 | |
76 | X9-62_c-TwoCurve 13 : c2tnb239v3 | |
77 | X9-62_c-TwoCurve 14 : c2onb239v4 | |
78 | X9-62_c-TwoCurve 15 : c2onb239v5 | |
79 | X9-62_c-TwoCurve 16 : c2pnb272w1 | |
80 | X9-62_c-TwoCurve 17 : c2pnb304w1 | |
81 | X9-62_c-TwoCurve 18 : c2tnb359v1 | |
82 | X9-62_c-TwoCurve 19 : c2pnb368w1 | |
83 | X9-62_c-TwoCurve 20 : c2tnb431r1 | |
14f7ee49 BM |
84 | !Alias primeCurve X9-62_ellipticCurve 1 |
85 | X9-62_primeCurve 1 : prime192v1 | |
86 | X9-62_primeCurve 2 : prime192v2 | |
87 | X9-62_primeCurve 3 : prime192v3 | |
88 | X9-62_primeCurve 4 : prime239v1 | |
89 | X9-62_primeCurve 5 : prime239v2 | |
90 | X9-62_primeCurve 6 : prime239v3 | |
91 | X9-62_primeCurve 7 : prime256v1 | |
92 | !Alias id-ecSigType ansi-X9-62 4 | |
93 | !global | |
94 | X9-62_id-ecSigType 1 : ecdsa-with-SHA1 | |
06e2dd03 NL |
95 | X9-62_id-ecSigType 2 : ecdsa-with-Recommended |
96 | X9-62_id-ecSigType 3 : ecdsa-with-Specified | |
97 | ecdsa-with-Specified 1 : ecdsa-with-SHA224 | |
98 | ecdsa-with-Specified 2 : ecdsa-with-SHA256 | |
99 | ecdsa-with-Specified 3 : ecdsa-with-SHA384 | |
100 | ecdsa-with-Specified 4 : ecdsa-with-SHA512 | |
14f7ee49 | 101 | |
1d284535 BM |
102 | # SECG curve OIDs from "SEC 2: Recommended Elliptic Curve Domain Parameters" |
103 | # (http://www.secg.org/) | |
36c19463 | 104 | !Alias secg_ellipticCurve certicom-arc 0 |
1d284535 | 105 | # SECG prime curves OIDs |
36c19463 BM |
106 | secg-ellipticCurve 6 : secp112r1 |
107 | secg-ellipticCurve 7 : secp112r2 | |
108 | secg-ellipticCurve 28 : secp128r1 | |
109 | secg-ellipticCurve 29 : secp128r2 | |
110 | secg-ellipticCurve 9 : secp160k1 | |
111 | secg-ellipticCurve 8 : secp160r1 | |
112 | secg-ellipticCurve 30 : secp160r2 | |
113 | secg-ellipticCurve 31 : secp192k1 | |
d745af4b BM |
114 | # NOTE: the curve secp192r1 is the same as prime192v1 defined above |
115 | # and is therefore omitted | |
36c19463 BM |
116 | secg-ellipticCurve 32 : secp224k1 |
117 | secg-ellipticCurve 33 : secp224r1 | |
118 | secg-ellipticCurve 10 : secp256k1 | |
d745af4b BM |
119 | # NOTE: the curve secp256r1 is the same as prime256v1 defined above |
120 | # and is therefore omitted | |
36c19463 BM |
121 | secg-ellipticCurve 34 : secp384r1 |
122 | secg-ellipticCurve 35 : secp521r1 | |
1d284535 | 123 | # SECG characteristic two curves OIDs |
36c19463 BM |
124 | secg-ellipticCurve 4 : sect113r1 |
125 | secg-ellipticCurve 5 : sect113r2 | |
126 | secg-ellipticCurve 22 : sect131r1 | |
127 | secg-ellipticCurve 23 : sect131r2 | |
128 | secg-ellipticCurve 1 : sect163k1 | |
129 | secg-ellipticCurve 2 : sect163r1 | |
130 | secg-ellipticCurve 15 : sect163r2 | |
131 | secg-ellipticCurve 24 : sect193r1 | |
132 | secg-ellipticCurve 25 : sect193r2 | |
133 | secg-ellipticCurve 26 : sect233k1 | |
134 | secg-ellipticCurve 27 : sect233r1 | |
135 | secg-ellipticCurve 3 : sect239k1 | |
136 | secg-ellipticCurve 16 : sect283k1 | |
137 | secg-ellipticCurve 17 : sect283r1 | |
138 | secg-ellipticCurve 36 : sect409k1 | |
139 | secg-ellipticCurve 37 : sect409r1 | |
140 | secg-ellipticCurve 38 : sect571k1 | |
141 | secg-ellipticCurve 39 : sect571r1 | |
14f7ee49 | 142 | |
1d284535 BM |
143 | # WAP/TLS curve OIDs (http://www.wapforum.org/) |
144 | !Alias wap-wsg-idm-ecid wap-wsg 4 | |
145 | wap-wsg-idm-ecid 1 : wap-wsg-idm-ecid-wtls1 | |
16dc1cfb BM |
146 | wap-wsg-idm-ecid 3 : wap-wsg-idm-ecid-wtls3 |
147 | wap-wsg-idm-ecid 4 : wap-wsg-idm-ecid-wtls4 | |
148 | wap-wsg-idm-ecid 5 : wap-wsg-idm-ecid-wtls5 | |
1d284535 | 149 | wap-wsg-idm-ecid 6 : wap-wsg-idm-ecid-wtls6 |
16dc1cfb | 150 | wap-wsg-idm-ecid 7 : wap-wsg-idm-ecid-wtls7 |
1d284535 BM |
151 | wap-wsg-idm-ecid 8 : wap-wsg-idm-ecid-wtls8 |
152 | wap-wsg-idm-ecid 9 : wap-wsg-idm-ecid-wtls9 | |
16dc1cfb BM |
153 | wap-wsg-idm-ecid 10 : wap-wsg-idm-ecid-wtls10 |
154 | wap-wsg-idm-ecid 11 : wap-wsg-idm-ecid-wtls11 | |
155 | wap-wsg-idm-ecid 12 : wap-wsg-idm-ecid-wtls12 | |
1d284535 BM |
156 | |
157 | ||
c2bbf9cf RL |
158 | ISO-US 113533 7 66 10 : CAST5-CBC : cast5-cbc |
159 | : CAST5-ECB : cast5-ecb | |
160 | !Cname cast5-cfb64 | |
161 | : CAST5-CFB : cast5-cfb | |
162 | !Cname cast5-ofb64 | |
163 | : CAST5-OFB : cast5-ofb | |
164 | !Cname pbeWithMD5AndCast5-CBC | |
165 | ISO-US 113533 7 66 12 : : pbeWithMD5AndCast5CBC | |
166 | ||
86140095 LJ |
167 | # Macs for CMP and CRMF |
168 | ISO-US 113533 7 66 13 : id-PasswordBasedMAC : password based MAC | |
169 | ISO-US 113533 7 66 30 : id-DHBasedMac : Diffie-Hellman based MAC | |
170 | ||
c2bbf9cf RL |
171 | ISO-US 113549 : rsadsi : RSA Data Security, Inc. |
172 | ||
173 | rsadsi 1 : pkcs : RSA Data Security, Inc. PKCS | |
174 | ||
175 | pkcs 1 : pkcs1 | |
176 | pkcs1 1 : : rsaEncryption | |
177 | pkcs1 2 : RSA-MD2 : md2WithRSAEncryption | |
dd5e7746 | 178 | pkcs1 3 : RSA-MD4 : md4WithRSAEncryption |
c2bbf9cf RL |
179 | pkcs1 4 : RSA-MD5 : md5WithRSAEncryption |
180 | pkcs1 5 : RSA-SHA1 : sha1WithRSAEncryption | |
6bca8e38 | 181 | # According to PKCS #1 version 2.1 |
b3339050 | 182 | pkcs1 7 : RSAES-OAEP : rsaesOaep |
ff04bbe3 | 183 | pkcs1 8 : MGF1 : mgf1 |
e423c360 | 184 | pkcs1 9 : PSPECIFIED : pSpecified |
ff04bbe3 DSH |
185 | pkcs1 10 : RSASSA-PSS : rsassaPss |
186 | ||
6bca8e38 AP |
187 | pkcs1 11 : RSA-SHA256 : sha256WithRSAEncryption |
188 | pkcs1 12 : RSA-SHA384 : sha384WithRSAEncryption | |
189 | pkcs1 13 : RSA-SHA512 : sha512WithRSAEncryption | |
190 | pkcs1 14 : RSA-SHA224 : sha224WithRSAEncryption | |
4bed94f0 P |
191 | pkcs1 15 : RSA-SHA512/224 : sha512-224WithRSAEncryption |
192 | pkcs1 16 : RSA-SHA512/256 : sha512-256WithRSAEncryption | |
c2bbf9cf RL |
193 | |
194 | pkcs 3 : pkcs3 | |
195 | pkcs3 1 : : dhKeyAgreement | |
196 | ||
197 | pkcs 5 : pkcs5 | |
198 | pkcs5 1 : PBE-MD2-DES : pbeWithMD2AndDES-CBC | |
199 | pkcs5 3 : PBE-MD5-DES : pbeWithMD5AndDES-CBC | |
200 | pkcs5 4 : PBE-MD2-RC2-64 : pbeWithMD2AndRC2-CBC | |
201 | pkcs5 6 : PBE-MD5-RC2-64 : pbeWithMD5AndRC2-CBC | |
202 | pkcs5 10 : PBE-SHA1-DES : pbeWithSHA1AndDES-CBC | |
203 | pkcs5 11 : PBE-SHA1-RC2-64 : pbeWithSHA1AndRC2-CBC | |
204 | !Cname id_pbkdf2 | |
205 | pkcs5 12 : : PBKDF2 | |
206 | !Cname pbes2 | |
207 | pkcs5 13 : : PBES2 | |
208 | !Cname pbmac1 | |
209 | pkcs5 14 : : PBMAC1 | |
210 | ||
211 | pkcs 7 : pkcs7 | |
212 | pkcs7 1 : : pkcs7-data | |
213 | !Cname pkcs7-signed | |
214 | pkcs7 2 : : pkcs7-signedData | |
215 | !Cname pkcs7-enveloped | |
216 | pkcs7 3 : : pkcs7-envelopedData | |
217 | !Cname pkcs7-signedAndEnveloped | |
218 | pkcs7 4 : : pkcs7-signedAndEnvelopedData | |
219 | !Cname pkcs7-digest | |
220 | pkcs7 5 : : pkcs7-digestData | |
221 | !Cname pkcs7-encrypted | |
222 | pkcs7 6 : : pkcs7-encryptedData | |
223 | ||
224 | pkcs 9 : pkcs9 | |
225 | !module pkcs9 | |
30911232 | 226 | pkcs9 1 : : emailAddress |
c2bbf9cf RL |
227 | pkcs9 2 : : unstructuredName |
228 | pkcs9 3 : : contentType | |
229 | pkcs9 4 : : messageDigest | |
230 | pkcs9 5 : : signingTime | |
231 | pkcs9 6 : : countersignature | |
232 | pkcs9 7 : : challengePassword | |
233 | pkcs9 8 : : unstructuredAddress | |
234 | !Cname extCertAttributes | |
235 | pkcs9 9 : : extendedCertificateAttributes | |
236 | !global | |
237 | ||
238 | !Cname ext-req | |
239 | pkcs9 14 : extReq : Extension Request | |
240 | ||
241 | !Cname SMIMECapabilities | |
242 | pkcs9 15 : SMIME-CAPS : S/MIME Capabilities | |
243 | ||
244 | # S/MIME | |
245 | !Cname SMIME | |
246 | pkcs9 16 : SMIME : S/MIME | |
247 | SMIME 0 : id-smime-mod | |
248 | SMIME 1 : id-smime-ct | |
249 | SMIME 2 : id-smime-aa | |
250 | SMIME 3 : id-smime-alg | |
251 | SMIME 4 : id-smime-cd | |
252 | SMIME 5 : id-smime-spq | |
253 | SMIME 6 : id-smime-cti | |
254 | ||
255 | # S/MIME Modules | |
256 | id-smime-mod 1 : id-smime-mod-cms | |
257 | id-smime-mod 2 : id-smime-mod-ess | |
258 | id-smime-mod 3 : id-smime-mod-oid | |
259 | id-smime-mod 4 : id-smime-mod-msg-v3 | |
260 | id-smime-mod 5 : id-smime-mod-ets-eSignature-88 | |
261 | id-smime-mod 6 : id-smime-mod-ets-eSignature-97 | |
262 | id-smime-mod 7 : id-smime-mod-ets-eSigPolicy-88 | |
263 | id-smime-mod 8 : id-smime-mod-ets-eSigPolicy-97 | |
264 | ||
265 | # S/MIME Content Types | |
266 | id-smime-ct 1 : id-smime-ct-receipt | |
267 | id-smime-ct 2 : id-smime-ct-authData | |
268 | id-smime-ct 3 : id-smime-ct-publishCert | |
269 | id-smime-ct 4 : id-smime-ct-TSTInfo | |
270 | id-smime-ct 5 : id-smime-ct-TDTInfo | |
271 | id-smime-ct 6 : id-smime-ct-contentInfo | |
272 | id-smime-ct 7 : id-smime-ct-DVCSRequestData | |
273 | id-smime-ct 8 : id-smime-ct-DVCSResponseData | |
400ca0e4 | 274 | id-smime-ct 9 : id-smime-ct-compressedData |
505aee29 WL |
275 | id-smime-ct 19 : id-smime-ct-contentCollection |
276 | id-smime-ct 23 : id-smime-ct-authEnvelopedData | |
d3372c2f JS |
277 | id-smime-ct 24 : id-ct-routeOriginAuthz |
278 | id-smime-ct 26 : id-ct-rpkiManifest | |
054307e7 | 279 | id-smime-ct 27 : id-ct-asciiTextWithCRLF |
505aee29 | 280 | id-smime-ct 28 : id-ct-xml |
d3372c2f JS |
281 | id-smime-ct 35 : id-ct-rpkiGhostbusters |
282 | id-smime-ct 36 : id-ct-resourceTaggedAttest | |
f2d78536 | 283 | id-smime-ct 47 : id-ct-geofeedCSVwithCRLF |
7303c582 | 284 | id-smime-ct 48 : id-ct-signedChecklist |
b0c1214e | 285 | id-smime-ct 49 : id-ct-ASPA |
fcae2ae4 | 286 | id-smime-ct 50 : id-ct-signedTAL |
c5e097de | 287 | id-smime-ct 51 : id-ct-rpkiSignedPrefixList |
c2bbf9cf RL |
288 | |
289 | # S/MIME Attributes | |
290 | id-smime-aa 1 : id-smime-aa-receiptRequest | |
291 | id-smime-aa 2 : id-smime-aa-securityLabel | |
292 | id-smime-aa 3 : id-smime-aa-mlExpandHistory | |
293 | id-smime-aa 4 : id-smime-aa-contentHint | |
294 | id-smime-aa 5 : id-smime-aa-msgSigDigest | |
295 | # obsolete | |
296 | id-smime-aa 6 : id-smime-aa-encapContentType | |
297 | id-smime-aa 7 : id-smime-aa-contentIdentifier | |
298 | # obsolete | |
299 | id-smime-aa 8 : id-smime-aa-macValue | |
300 | id-smime-aa 9 : id-smime-aa-equivalentLabels | |
301 | id-smime-aa 10 : id-smime-aa-contentReference | |
302 | id-smime-aa 11 : id-smime-aa-encrypKeyPref | |
303 | id-smime-aa 12 : id-smime-aa-signingCertificate | |
304 | id-smime-aa 13 : id-smime-aa-smimeEncryptCerts | |
305 | id-smime-aa 14 : id-smime-aa-timeStampToken | |
306 | id-smime-aa 15 : id-smime-aa-ets-sigPolicyId | |
307 | id-smime-aa 16 : id-smime-aa-ets-commitmentType | |
308 | id-smime-aa 17 : id-smime-aa-ets-signerLocation | |
309 | id-smime-aa 18 : id-smime-aa-ets-signerAttr | |
310 | id-smime-aa 19 : id-smime-aa-ets-otherSigCert | |
311 | id-smime-aa 20 : id-smime-aa-ets-contentTimestamp | |
312 | id-smime-aa 21 : id-smime-aa-ets-CertificateRefs | |
313 | id-smime-aa 22 : id-smime-aa-ets-RevocationRefs | |
314 | id-smime-aa 23 : id-smime-aa-ets-certValues | |
315 | id-smime-aa 24 : id-smime-aa-ets-revocationValues | |
316 | id-smime-aa 25 : id-smime-aa-ets-escTimeStamp | |
317 | id-smime-aa 26 : id-smime-aa-ets-certCRLTimestamp | |
318 | id-smime-aa 27 : id-smime-aa-ets-archiveTimeStamp | |
319 | id-smime-aa 28 : id-smime-aa-signatureType | |
320 | id-smime-aa 29 : id-smime-aa-dvcs-dvc | |
5f7d4e91 LJ |
321 | id-smime-aa 44 : id-aa-ets-attrCertificateRefs |
322 | id-smime-aa 45 : id-aa-ets-attrRevocationRefs | |
e92947d8 | 323 | id-smime-aa 47 : id-smime-aa-signingCertificateV2 |
5f7d4e91 | 324 | id-smime-aa 48 : id-aa-ets-archiveTimestampV2 |
c2bbf9cf RL |
325 | |
326 | # S/MIME Algorithm Identifiers | |
327 | # obsolete | |
328 | id-smime-alg 1 : id-smime-alg-ESDHwith3DES | |
329 | # obsolete | |
330 | id-smime-alg 2 : id-smime-alg-ESDHwithRC2 | |
331 | # obsolete | |
332 | id-smime-alg 3 : id-smime-alg-3DESwrap | |
333 | # obsolete | |
334 | id-smime-alg 4 : id-smime-alg-RC2wrap | |
335 | id-smime-alg 5 : id-smime-alg-ESDH | |
336 | id-smime-alg 6 : id-smime-alg-CMS3DESwrap | |
337 | id-smime-alg 7 : id-smime-alg-CMSRC2wrap | |
f2334630 | 338 | id-smime-alg 9 : id-alg-PWRI-KEK |
c2bbf9cf RL |
339 | |
340 | # S/MIME Certificate Distribution | |
341 | id-smime-cd 1 : id-smime-cd-ldap | |
342 | ||
343 | # S/MIME Signature Policy Qualifier | |
344 | id-smime-spq 1 : id-smime-spq-ets-sqt-uri | |
345 | id-smime-spq 2 : id-smime-spq-ets-sqt-unotice | |
346 | ||
347 | # S/MIME Commitment Type Identifier | |
348 | id-smime-cti 1 : id-smime-cti-ets-proofOfOrigin | |
349 | id-smime-cti 2 : id-smime-cti-ets-proofOfReceipt | |
350 | id-smime-cti 3 : id-smime-cti-ets-proofOfDelivery | |
351 | id-smime-cti 4 : id-smime-cti-ets-proofOfSender | |
352 | id-smime-cti 5 : id-smime-cti-ets-proofOfApproval | |
353 | id-smime-cti 6 : id-smime-cti-ets-proofOfCreation | |
354 | ||
355 | pkcs9 20 : : friendlyName | |
356 | pkcs9 21 : : localKeyID | |
f3afe15f | 357 | !Alias ms-corp 1 3 6 1 4 1 311 |
f2a253e0 | 358 | !Cname ms-csp-name |
f3afe15f DZ |
359 | ms-corp 17 1 : CSPName : Microsoft CSP Name |
360 | ms-corp 17 2 : LocalKeySet : Microsoft Local Key set | |
c2bbf9cf RL |
361 | !Alias certTypes pkcs9 22 |
362 | certTypes 1 : : x509Certificate | |
363 | certTypes 2 : : sdsiCertificate | |
364 | !Alias crlTypes pkcs9 23 | |
365 | crlTypes 1 : : x509Crl | |
366 | ||
5f7d4e91 LJ |
367 | pkcs9 52 : id-aa-CMSAlgorithmProtection |
368 | ||
c2bbf9cf RL |
369 | !Alias pkcs12 pkcs 12 |
370 | !Alias pkcs12-pbeids pkcs12 1 | |
371 | ||
372 | !Cname pbe-WithSHA1And128BitRC4 | |
373 | pkcs12-pbeids 1 : PBE-SHA1-RC4-128 : pbeWithSHA1And128BitRC4 | |
374 | !Cname pbe-WithSHA1And40BitRC4 | |
375 | pkcs12-pbeids 2 : PBE-SHA1-RC4-40 : pbeWithSHA1And40BitRC4 | |
376 | !Cname pbe-WithSHA1And3_Key_TripleDES-CBC | |
377 | pkcs12-pbeids 3 : PBE-SHA1-3DES : pbeWithSHA1And3-KeyTripleDES-CBC | |
378 | !Cname pbe-WithSHA1And2_Key_TripleDES-CBC | |
379 | pkcs12-pbeids 4 : PBE-SHA1-2DES : pbeWithSHA1And2-KeyTripleDES-CBC | |
380 | !Cname pbe-WithSHA1And128BitRC2-CBC | |
381 | pkcs12-pbeids 5 : PBE-SHA1-RC2-128 : pbeWithSHA1And128BitRC2-CBC | |
382 | !Cname pbe-WithSHA1And40BitRC2-CBC | |
383 | pkcs12-pbeids 6 : PBE-SHA1-RC2-40 : pbeWithSHA1And40BitRC2-CBC | |
384 | ||
385 | !Alias pkcs12-Version1 pkcs12 10 | |
386 | !Alias pkcs12-BagIds pkcs12-Version1 1 | |
387 | pkcs12-BagIds 1 : : keyBag | |
388 | pkcs12-BagIds 2 : : pkcs8ShroudedKeyBag | |
389 | pkcs12-BagIds 3 : : certBag | |
390 | pkcs12-BagIds 4 : : crlBag | |
391 | pkcs12-BagIds 5 : : secretBag | |
392 | pkcs12-BagIds 6 : : safeContentsBag | |
393 | ||
394 | rsadsi 2 2 : MD2 : md2 | |
395 | rsadsi 2 4 : MD4 : md4 | |
396 | rsadsi 2 5 : MD5 : md5 | |
397 | : MD5-SHA1 : md5-sha1 | |
856640b5 | 398 | rsadsi 2 6 : : hmacWithMD5 |
c2bbf9cf | 399 | rsadsi 2 7 : : hmacWithSHA1 |
1631d5f9 | 400 | |
3d328a44 JL |
401 | sm-scheme 301 : SM2 : sm2 |
402 | ||
403 | sm-scheme 401 : SM3 : sm3 | |
404 | sm-scheme 504 : RSA-SM3 : sm3WithRSAEncryption | |
a0c3e4fa | 405 | |
8267becb | 406 | sm-scheme 501 : SM2-SM3 : SM2-with-SM3 |
407 | ||
48963ff6 K |
408 | # From GM/T 0091-2020 |
409 | sm3 3 1 : : hmacWithSM3 | |
410 | ||
1631d5f9 DSH |
411 | # From RFC4231 |
412 | rsadsi 2 8 : : hmacWithSHA224 | |
413 | rsadsi 2 9 : : hmacWithSHA256 | |
414 | rsadsi 2 10 : : hmacWithSHA384 | |
415 | rsadsi 2 11 : : hmacWithSHA512 | |
416 | ||
f52292be P |
417 | # From RFC8018 |
418 | rsadsi 2 12 : : hmacWithSHA512-224 | |
419 | rsadsi 2 13 : : hmacWithSHA512-256 | |
420 | ||
c2bbf9cf RL |
421 | rsadsi 3 2 : RC2-CBC : rc2-cbc |
422 | : RC2-ECB : rc2-ecb | |
423 | !Cname rc2-cfb64 | |
424 | : RC2-CFB : rc2-cfb | |
425 | !Cname rc2-ofb64 | |
426 | : RC2-OFB : rc2-ofb | |
427 | : RC2-40-CBC : rc2-40-cbc | |
428 | : RC2-64-CBC : rc2-64-cbc | |
429 | rsadsi 3 4 : RC4 : rc4 | |
430 | : RC4-40 : rc4-40 | |
431 | rsadsi 3 7 : DES-EDE3-CBC : des-ede3-cbc | |
432 | rsadsi 3 8 : RC5-CBC : rc5-cbc | |
433 | : RC5-ECB : rc5-ecb | |
434 | !Cname rc5-cfb64 | |
435 | : RC5-CFB : rc5-cfb | |
436 | !Cname rc5-ofb64 | |
437 | : RC5-OFB : rc5-ofb | |
438 | ||
439 | !Cname ms-ext-req | |
f3afe15f | 440 | ms-corp 2 1 14 : msExtReq : Microsoft Extension Request |
c2bbf9cf | 441 | !Cname ms-code-ind |
f3afe15f | 442 | ms-corp 2 1 21 : msCodeInd : Microsoft Individual Code Signing |
c2bbf9cf | 443 | !Cname ms-code-com |
f3afe15f | 444 | ms-corp 2 1 22 : msCodeCom : Microsoft Commercial Code Signing |
c2bbf9cf | 445 | !Cname ms-ctl-sign |
f3afe15f | 446 | ms-corp 10 3 1 : msCTLSign : Microsoft Trust List Signing |
c2bbf9cf | 447 | !Cname ms-sgc |
f3afe15f | 448 | ms-corp 10 3 3 : msSGC : Microsoft Server Gated Crypto |
c2bbf9cf | 449 | !Cname ms-efs |
f3afe15f | 450 | ms-corp 10 3 4 : msEFS : Microsoft Encrypted File System |
ce4f169f | 451 | !Cname ms-smartcard-login |
f3afe15f | 452 | ms-corp 20 2 2 : msSmartcardLogin : Microsoft Smartcard Login |
ce4f169f | 453 | !Cname ms-upn |
f3afe15f DZ |
454 | ms-corp 20 2 3 : msUPN : Microsoft User Principal Name |
455 | ||
456 | ms-corp 25 2 : ms-ntds-sec-ext : Microsoft NTDS CA Extension | |
457 | ms-corp 25 2 1 : ms-ntds-obj-sid : Microsoft NTDS AD objectSid | |
458 | ms-corp 21 7 : ms-cert-templ : Microsoft certificate template | |
459 | ms-corp 21 10 : ms-app-policies : Microsoft Application Policies Extension | |
c2bbf9cf RL |
460 | |
461 | 1 3 6 1 4 1 188 7 1 1 2 : IDEA-CBC : idea-cbc | |
462 | : IDEA-ECB : idea-ecb | |
463 | !Cname idea-cfb64 | |
464 | : IDEA-CFB : idea-cfb | |
465 | !Cname idea-ofb64 | |
466 | : IDEA-OFB : idea-ofb | |
467 | ||
468 | 1 3 6 1 4 1 3029 1 2 : BF-CBC : bf-cbc | |
469 | : BF-ECB : bf-ecb | |
470 | !Cname bf-cfb64 | |
471 | : BF-CFB : bf-cfb | |
472 | !Cname bf-ofb64 | |
473 | : BF-OFB : bf-ofb | |
474 | ||
475 | !Cname id-pkix | |
476 | 1 3 6 1 5 5 7 : PKIX | |
477 | ||
478 | # PKIX Arcs | |
479 | id-pkix 0 : id-pkix-mod | |
480 | id-pkix 1 : id-pe | |
481 | id-pkix 2 : id-qt | |
482 | id-pkix 3 : id-kp | |
483 | id-pkix 4 : id-it | |
484 | id-pkix 5 : id-pkip | |
485 | id-pkix 6 : id-alg | |
486 | id-pkix 7 : id-cmc | |
487 | id-pkix 8 : id-on | |
488 | id-pkix 9 : id-pda | |
489 | id-pkix 10 : id-aca | |
490 | id-pkix 11 : id-qcs | |
d3372c2f | 491 | id-pkix 14 : id-cp |
c2bbf9cf | 492 | id-pkix 12 : id-cct |
6951c23a | 493 | id-pkix 21 : id-ppl |
c2bbf9cf RL |
494 | id-pkix 48 : id-ad |
495 | ||
496 | # PKIX Modules | |
497 | id-pkix-mod 1 : id-pkix1-explicit-88 | |
498 | id-pkix-mod 2 : id-pkix1-implicit-88 | |
499 | id-pkix-mod 3 : id-pkix1-explicit-93 | |
500 | id-pkix-mod 4 : id-pkix1-implicit-93 | |
501 | id-pkix-mod 5 : id-mod-crmf | |
502 | id-pkix-mod 6 : id-mod-cmc | |
503 | id-pkix-mod 7 : id-mod-kea-profile-88 | |
504 | id-pkix-mod 8 : id-mod-kea-profile-93 | |
505 | id-pkix-mod 9 : id-mod-cmp | |
506 | id-pkix-mod 10 : id-mod-qualified-cert-88 | |
507 | id-pkix-mod 11 : id-mod-qualified-cert-93 | |
508 | id-pkix-mod 12 : id-mod-attribute-cert | |
509 | id-pkix-mod 13 : id-mod-timestamp-protocol | |
510 | id-pkix-mod 14 : id-mod-ocsp | |
511 | id-pkix-mod 15 : id-mod-dvcs | |
512 | id-pkix-mod 16 : id-mod-cmp2000 | |
34959f7a DDO |
513 | id-pkix-mod 50 : id-mod-cmp2000-02 |
514 | id-pkix-mod 99 : id-mod-cmp2021-88 | |
515 | id-pkix-mod 100 : id-mod-cmp2021-02 | |
c2bbf9cf RL |
516 | |
517 | # PKIX Private Extensions | |
518 | !Cname info-access | |
519 | id-pe 1 : authorityInfoAccess : Authority Information Access | |
520 | id-pe 2 : biometricInfo : Biometric Info | |
521 | id-pe 3 : qcStatements | |
522 | id-pe 4 : ac-auditEntity | |
523 | id-pe 5 : ac-targeting | |
524 | id-pe 6 : aaControls | |
5f10073c NL |
525 | id-pe 7 : sbgp-ipAddrBlock |
526 | id-pe 8 : sbgp-autonomousSysNum | |
527 | id-pe 9 : sbgp-routerIdentifier | |
4b125068 RL |
528 | id-pe 10 : ac-proxying |
529 | !Cname sinfo-access | |
530 | id-pe 11 : subjectInfoAccess : Subject Information Access | |
6951c23a | 531 | id-pe 14 : proxyCertInfo : Proxy Certificate Information |
ba67253d | 532 | id-pe 24 : tlsfeature : TLS Feature |
d3372c2f JS |
533 | id-pe 28 : sbgp-ipAddrBlockv2 |
534 | id-pe 29 : sbgp-autonomousSysNumv2 | |
c2bbf9cf RL |
535 | |
536 | # PKIX policyQualifiers for Internet policy qualifiers | |
537 | id-qt 1 : id-qt-cps : Policy Qualifier CPS | |
538 | id-qt 2 : id-qt-unotice : Policy Qualifier User Notice | |
539 | id-qt 3 : textNotice | |
540 | ||
15633d74 | 541 | # https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml#smi-numbers-1.3.6.1.5.5.7.3 |
c2bbf9cf RL |
542 | # PKIX key purpose identifiers |
543 | !Cname server-auth | |
544 | id-kp 1 : serverAuth : TLS Web Server Authentication | |
545 | !Cname client-auth | |
546 | id-kp 2 : clientAuth : TLS Web Client Authentication | |
547 | !Cname code-sign | |
548 | id-kp 3 : codeSigning : Code Signing | |
549 | !Cname email-protect | |
550 | id-kp 4 : emailProtection : E-mail Protection | |
551 | id-kp 5 : ipsecEndSystem : IPSec End System | |
552 | id-kp 6 : ipsecTunnel : IPSec Tunnel | |
553 | id-kp 7 : ipsecUser : IPSec User | |
554 | !Cname time-stamp | |
555 | id-kp 8 : timeStamping : Time Stamping | |
d4fbe318 | 556 | # From OCSP spec RFC2560 |
c2bbf9cf RL |
557 | !Cname OCSP-sign |
558 | id-kp 9 : OCSPSigning : OCSP Signing | |
559 | id-kp 10 : DVCS : dvcs | |
b5c5a971 RS |
560 | !Cname ipsec-IKE |
561 | id-kp 17 : ipsecIKE : ipsec Internet Key Exchange | |
d9f77726 RS |
562 | id-kp 18 : capwapAC : Ctrl/provision WAP Access |
563 | id-kp 19 : capwapWTP : Ctrl/Provision WAP Termination | |
564 | !Cname sshClient | |
565 | id-kp 21 : secureShellClient : SSH Client | |
566 | !Cname sshServer | |
567 | id-kp 22 : secureShellServer : SSH Server | |
568 | id-kp 23 : sendRouter : Send Router | |
569 | id-kp 24 : sendProxiedRouter : Send Proxied Router | |
570 | id-kp 25 : sendOwner : Send Owner | |
571 | id-kp 26 : sendProxiedOwner : Send Proxied Owner | |
fdc83a7c MR |
572 | id-kp 27 : cmcCA : CMC Certificate Authority |
573 | id-kp 28 : cmcRA : CMC Registration Authority | |
15633d74 DDO |
574 | id-kp 29 : cmcArchive : CMC Archive Server |
575 | id-kp 30 : id-kp-bgpsec-router : BGPsec Router | |
576 | id-kp 31 : id-kp-BrandIndicatorforMessageIdentification : Brand Indicator for Message Identification | |
577 | id-kp 32 : cmKGA : Certificate Management Key Generation Authority | |
c2bbf9cf | 578 | |
15633d74 | 579 | # https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml#smi-numbers-1.3.6.1.5.5.7.4 |
c2bbf9cf RL |
580 | # CMP information types |
581 | id-it 1 : id-it-caProtEncCert | |
582 | id-it 2 : id-it-signKeyPairTypes | |
583 | id-it 3 : id-it-encKeyPairTypes | |
584 | id-it 4 : id-it-preferredSymmAlg | |
585 | id-it 5 : id-it-caKeyUpdateInfo | |
586 | id-it 6 : id-it-currentCRL | |
587 | id-it 7 : id-it-unsupportedOIDs | |
34959f7a | 588 | # [Reserved and Obsolete]: |
c2bbf9cf | 589 | id-it 8 : id-it-subscriptionRequest |
34959f7a | 590 | # [Reserved and Obsolete]: |
c2bbf9cf RL |
591 | id-it 9 : id-it-subscriptionResponse |
592 | id-it 10 : id-it-keyPairParamReq | |
593 | id-it 11 : id-it-keyPairParamRep | |
594 | id-it 12 : id-it-revPassphrase | |
595 | id-it 13 : id-it-implicitConfirm | |
596 | id-it 14 : id-it-confirmWaitTime | |
597 | id-it 15 : id-it-origPKIMessage | |
86140095 | 598 | id-it 16 : id-it-suppLangTags |
15633d74 DDO |
599 | id-it 17 : id-it-caCerts |
600 | id-it 18 : id-it-rootCaKeyUpdate | |
601 | id-it 19 : id-it-certReqTemplate | |
34959f7a DDO |
602 | id-it 20 : id-it-rootCaCert |
603 | id-it 21 : id-it-certProfile | |
604 | id-it 22 : id-it-crlStatusList | |
605 | id-it 23 : id-it-crls | |
c2bbf9cf RL |
606 | |
607 | # CRMF registration | |
608 | id-pkip 1 : id-regCtrl | |
609 | id-pkip 2 : id-regInfo | |
610 | ||
611 | # CRMF registration controls | |
612 | id-regCtrl 1 : id-regCtrl-regToken | |
613 | id-regCtrl 2 : id-regCtrl-authenticator | |
614 | id-regCtrl 3 : id-regCtrl-pkiPublicationInfo | |
615 | id-regCtrl 4 : id-regCtrl-pkiArchiveOptions | |
616 | id-regCtrl 5 : id-regCtrl-oldCertID | |
617 | id-regCtrl 6 : id-regCtrl-protocolEncrKey | |
34959f7a DDO |
618 | id-regCtrl 7 : id-regCtrl-altCertTemplate |
619 | # id-regCtrl 8 : id-regCtrl-wtlsTemplate [Reserved and Obsolete] | |
620 | # id-regCtrl 9 : id-regCtrl-regTokenUTF8 [Reserved and Obsolete] | |
621 | # id-regCtrl 10 : id-regCtrl-authenticatorUTF8 [Reserved and Obsolete] | |
622 | id-regCtrl 11 : id-regCtrl-algId | |
623 | id-regCtrl 12 : id-regCtrl-rsaKeyLen | |
c2bbf9cf RL |
624 | |
625 | # CRMF registration information | |
626 | id-regInfo 1 : id-regInfo-utf8Pairs | |
627 | id-regInfo 2 : id-regInfo-certReq | |
628 | ||
629 | # algorithms | |
630 | id-alg 1 : id-alg-des40 | |
631 | id-alg 2 : id-alg-noSignature | |
632 | id-alg 3 : id-alg-dh-sig-hmac-sha1 | |
633 | id-alg 4 : id-alg-dh-pop | |
634 | ||
635 | # CMC controls | |
636 | id-cmc 1 : id-cmc-statusInfo | |
637 | id-cmc 2 : id-cmc-identification | |
638 | id-cmc 3 : id-cmc-identityProof | |
639 | id-cmc 4 : id-cmc-dataReturn | |
640 | id-cmc 5 : id-cmc-transactionId | |
641 | id-cmc 6 : id-cmc-senderNonce | |
642 | id-cmc 7 : id-cmc-recipientNonce | |
643 | id-cmc 8 : id-cmc-addExtensions | |
644 | id-cmc 9 : id-cmc-encryptedPOP | |
645 | id-cmc 10 : id-cmc-decryptedPOP | |
646 | id-cmc 11 : id-cmc-lraPOPWitness | |
647 | id-cmc 15 : id-cmc-getCert | |
648 | id-cmc 16 : id-cmc-getCRL | |
649 | id-cmc 17 : id-cmc-revokeRequest | |
650 | id-cmc 18 : id-cmc-regInfo | |
651 | id-cmc 19 : id-cmc-responseInfo | |
652 | id-cmc 21 : id-cmc-queryPending | |
653 | id-cmc 22 : id-cmc-popLinkRandom | |
654 | id-cmc 23 : id-cmc-popLinkWitness | |
fdc83a7c | 655 | id-cmc 24 : id-cmc-confirmCertAcceptance |
c2bbf9cf RL |
656 | |
657 | # other names | |
658 | id-on 1 : id-on-personalData | |
df0681e5 | 659 | id-on 3 : id-on-permanentIdentifier : Permanent Identifier |
4baee2d7 DB |
660 | id-on 5 : id-on-xmppAddr : XmppAddr |
661 | id-on 7 : id-on-dnsSRV : SRVName | |
f5e77bb0 | 662 | id-on 8 : id-on-NAIRealm : NAIRealm |
4baee2d7 | 663 | id-on 9 : id-on-SmtpUTF8Mailbox : Smtp UTF8 Mailbox |
c2bbf9cf RL |
664 | |
665 | # personal data attributes | |
666 | id-pda 1 : id-pda-dateOfBirth | |
667 | id-pda 2 : id-pda-placeOfBirth | |
7ef70151 RL |
668 | id-pda 3 : id-pda-gender |
669 | id-pda 4 : id-pda-countryOfCitizenship | |
670 | id-pda 5 : id-pda-countryOfResidence | |
c2bbf9cf RL |
671 | |
672 | # attribute certificate attributes | |
673 | id-aca 1 : id-aca-authenticationInfo | |
674 | id-aca 2 : id-aca-accessIdentity | |
675 | id-aca 3 : id-aca-chargingIdentity | |
676 | id-aca 4 : id-aca-group | |
4b125068 | 677 | # attention : the following seems to be obsolete, replace by 'role' |
c2bbf9cf | 678 | id-aca 5 : id-aca-role |
4b125068 | 679 | id-aca 6 : id-aca-encAttrs |
c2bbf9cf RL |
680 | |
681 | # qualified certificate statements | |
682 | id-qcs 1 : id-qcs-pkixQCSyntax-v1 | |
683 | ||
d3372c2f JS |
684 | # PKIX Certificate Policies |
685 | id-cp 2 : ipAddr-asNumber | |
686 | id-cp 3 : ipAddr-asNumberv2 | |
687 | ||
c2bbf9cf RL |
688 | # CMC content types |
689 | id-cct 1 : id-cct-crs | |
690 | id-cct 2 : id-cct-PKIData | |
691 | id-cct 3 : id-cct-PKIResponse | |
692 | ||
6951c23a RL |
693 | # Predefined Proxy Certificate policy languages |
694 | id-ppl 0 : id-ppl-anyLanguage : Any language | |
695 | id-ppl 1 : id-ppl-inheritAll : Inherit all | |
696 | id-ppl 2 : id-ppl-independent : Independent | |
697 | ||
c2bbf9cf RL |
698 | # access descriptors for authority info access extension |
699 | !Cname ad-OCSP | |
700 | id-ad 1 : OCSP : OCSP | |
701 | !Cname ad-ca-issuers | |
702 | id-ad 2 : caIssuers : CA Issuers | |
703 | !Cname ad-timeStamping | |
15c2e126 | 704 | id-ad 3 : ad_timestamping : AD Time Stamping |
c2bbf9cf | 705 | !Cname ad-dvcs |
15c2e126 | 706 | id-ad 4 : AD_DVCS : ad dvcs |
6e150083 | 707 | id-ad 5 : caRepository : CA Repository |
d3372c2f JS |
708 | id-ad 10 : rpkiManifest : RPKI Manifest |
709 | id-ad 11 : signedObject : Signed Object | |
710 | id-ad 13 : rpkiNotify : RPKI Notify | |
c2bbf9cf RL |
711 | |
712 | !Alias id-pkix-OCSP ad-OCSP | |
713 | !module id-pkix-OCSP | |
714 | !Cname basic | |
715 | id-pkix-OCSP 1 : basicOCSPResponse : Basic OCSP Response | |
716 | id-pkix-OCSP 2 : Nonce : OCSP Nonce | |
717 | id-pkix-OCSP 3 : CrlID : OCSP CRL ID | |
718 | id-pkix-OCSP 4 : acceptableResponses : Acceptable OCSP Responses | |
f1a6a0d4 | 719 | id-pkix-OCSP 5 : noCheck : OCSP No Check |
c2bbf9cf RL |
720 | id-pkix-OCSP 6 : archiveCutoff : OCSP Archive Cutoff |
721 | id-pkix-OCSP 7 : serviceLocator : OCSP Service Locator | |
722 | id-pkix-OCSP 8 : extendedStatus : Extended OCSP Status | |
723 | id-pkix-OCSP 9 : valid | |
724 | id-pkix-OCSP 10 : path | |
725 | id-pkix-OCSP 11 : trustRoot : Trust Root | |
726 | !global | |
727 | ||
728 | 1 3 14 3 2 : algorithm : algorithm | |
729 | algorithm 3 : RSA-NP-MD5 : md5WithRSA | |
730 | algorithm 6 : DES-ECB : des-ecb | |
731 | algorithm 7 : DES-CBC : des-cbc | |
732 | !Cname des-ofb64 | |
733 | algorithm 8 : DES-OFB : des-ofb | |
734 | !Cname des-cfb64 | |
735 | algorithm 9 : DES-CFB : des-cfb | |
d02b48c6 | 736 | algorithm 11 : rsaSignature |
c2bbf9cf RL |
737 | !Cname dsa-2 |
738 | algorithm 12 : DSA-old : dsaEncryption-old | |
739 | algorithm 13 : DSA-SHA : dsaWithSHA | |
740 | algorithm 15 : RSA-SHA : shaWithRSAEncryption | |
c518ade1 | 741 | !Cname des-ede-ecb |
c2bbf9cf | 742 | algorithm 17 : DES-EDE : des-ede |
c518ade1 | 743 | !Cname des-ede3-ecb |
c2bbf9cf RL |
744 | : DES-EDE3 : des-ede3 |
745 | : DES-EDE-CBC : des-ede-cbc | |
746 | !Cname des-ede-cfb64 | |
747 | : DES-EDE-CFB : des-ede-cfb | |
748 | !Cname des-ede3-cfb64 | |
749 | : DES-EDE3-CFB : des-ede3-cfb | |
750 | !Cname des-ede-ofb64 | |
751 | : DES-EDE-OFB : des-ede-ofb | |
752 | !Cname des-ede3-ofb64 | |
753 | : DES-EDE3-OFB : des-ede3-ofb | |
754 | : DESX-CBC : desx-cbc | |
755 | algorithm 18 : SHA : sha | |
756 | algorithm 26 : SHA1 : sha1 | |
757 | !Cname dsaWithSHA1-2 | |
758 | algorithm 27 : DSA-SHA1-old : dsaWithSHA1-old | |
759 | algorithm 29 : RSA-SHA1-2 : sha1WithRSA | |
760 | ||
761 | 1 3 36 3 2 1 : RIPEMD160 : ripemd160 | |
762 | 1 3 36 3 3 1 2 : RSA-RIPEMD160 : ripemd160WithRSA | |
763 | ||
3f1679b2 P |
764 | 1 3 6 1 4 1 1722 12 2 1 : BLAKE2BMAC : blake2bmac |
765 | 1 3 6 1 4 1 1722 12 2 2 : BLAKE2SMAC : blake2smac | |
766 | blake2bmac 16 : BLAKE2b512 : blake2b512 | |
767 | blake2smac 8 : BLAKE2s256 : blake2s256 | |
2d0b4412 | 768 | |
c2bbf9cf RL |
769 | !Cname sxnet |
770 | 1 3 101 1 4 1 : SXNetID : Strong Extranet ID | |
771 | ||
772 | 2 5 : X500 : directory services (X.500) | |
773 | ||
774 | X500 4 : X509 | |
775 | X509 3 : CN : commonName | |
54d4f8c3 | 776 | X509 4 : SN : surname |
ffbe98b7 | 777 | X509 5 : : serialNumber |
c2bbf9cf RL |
778 | X509 6 : C : countryName |
779 | X509 7 : L : localityName | |
780 | X509 8 : ST : stateOrProvinceName | |
ddcfc25a | 781 | X509 9 : street : streetAddress |
c2bbf9cf RL |
782 | X509 10 : O : organizationName |
783 | X509 11 : OU : organizationalUnitName | |
ddcfc25a | 784 | X509 12 : title : title |
30911232 | 785 | X509 13 : : description |
ddcfc25a DSH |
786 | X509 14 : : searchGuide |
787 | X509 15 : : businessCategory | |
788 | X509 16 : : postalAddress | |
789 | X509 17 : : postalCode | |
790 | X509 18 : : postOfficeBox | |
791 | X509 19 : : physicalDeliveryOfficeName | |
792 | X509 20 : : telephoneNumber | |
793 | X509 21 : : telexNumber | |
794 | X509 22 : : teletexTerminalIdentifier | |
795 | X509 23 : : facsimileTelephoneNumber | |
796 | X509 24 : : x121Address | |
797 | X509 25 : : internationaliSDNNumber | |
798 | X509 26 : : registeredAddress | |
799 | X509 27 : : destinationIndicator | |
800 | X509 28 : : preferredDeliveryMethod | |
801 | X509 29 : : presentationAddress | |
802 | X509 30 : : supportedApplicationContext | |
803 | X509 31 : member : | |
804 | X509 32 : owner : | |
805 | X509 33 : : roleOccupant | |
806 | X509 34 : seeAlso : | |
807 | X509 35 : : userPassword | |
808 | X509 36 : : userCertificate | |
809 | X509 37 : : cACertificate | |
810 | X509 38 : : authorityRevocationList | |
811 | X509 39 : : certificateRevocationList | |
812 | X509 40 : : crossCertificatePair | |
c2bbf9cf | 813 | X509 41 : name : name |
aafafa31 | 814 | X509 42 : GN : givenName |
ddcfc25a | 815 | X509 43 : initials : initials |
f1e66437 | 816 | X509 44 : : generationQualifier |
30911232 | 817 | X509 45 : : x500UniqueIdentifier |
c2bbf9cf | 818 | X509 46 : dnQualifier : dnQualifier |
ddcfc25a DSH |
819 | X509 47 : : enhancedSearchGuide |
820 | X509 48 : : protocolInformation | |
821 | X509 49 : : distinguishedName | |
822 | X509 50 : : uniqueMember | |
823 | X509 51 : : houseIdentifier | |
824 | X509 52 : : supportedAlgorithms | |
825 | X509 53 : : deltaRevocationList | |
826 | X509 54 : dmdName : | |
34573173 | 827 | X509 65 : : pseudonym |
4b125068 | 828 | X509 72 : role : role |
4a8ab10d EA |
829 | X509 97 : : organizationIdentifier |
830 | X509 98 : c3 : countryCode3c | |
831 | X509 99 : n3 : countryCode3n | |
832 | X509 100 : : dnsName | |
833 | ||
c2bbf9cf RL |
834 | |
835 | X500 8 : X500algorithms : directory services - algorithms | |
836 | X500algorithms 1 1 : RSA : rsa | |
837 | X500algorithms 3 100 : RSA-MDC2 : mdc2WithRSA | |
838 | X500algorithms 3 101 : MDC2 : mdc2 | |
839 | ||
840 | X500 29 : id-ce | |
b0eedd77 NL |
841 | !Cname subject-directory-attributes |
842 | id-ce 9 : subjectDirectoryAttributes : X509v3 Subject Directory Attributes | |
c2bbf9cf RL |
843 | !Cname subject-key-identifier |
844 | id-ce 14 : subjectKeyIdentifier : X509v3 Subject Key Identifier | |
845 | !Cname key-usage | |
846 | id-ce 15 : keyUsage : X509v3 Key Usage | |
847 | !Cname private-key-usage-period | |
848 | id-ce 16 : privateKeyUsagePeriod : X509v3 Private Key Usage Period | |
849 | !Cname subject-alt-name | |
850 | id-ce 17 : subjectAltName : X509v3 Subject Alternative Name | |
851 | !Cname issuer-alt-name | |
852 | id-ce 18 : issuerAltName : X509v3 Issuer Alternative Name | |
853 | !Cname basic-constraints | |
854 | id-ce 19 : basicConstraints : X509v3 Basic Constraints | |
855 | !Cname crl-number | |
856 | id-ce 20 : crlNumber : X509v3 CRL Number | |
857 | !Cname crl-reason | |
858 | id-ce 21 : CRLReason : X509v3 CRL Reason Code | |
859 | !Cname invalidity-date | |
860 | id-ce 24 : invalidityDate : Invalidity Date | |
861 | !Cname delta-crl | |
862 | id-ce 27 : deltaCRL : X509v3 Delta CRL Indicator | |
231493c9 | 863 | !Cname issuing-distribution-point |
8332f91c | 864 | id-ce 28 : issuingDistributionPoint : X509v3 Issuing Distribution Point |
b0eedd77 NL |
865 | !Cname certificate-issuer |
866 | id-ce 29 : certificateIssuer : X509v3 Certificate Issuer | |
1c2d1412 DSH |
867 | !Cname name-constraints |
868 | id-ce 30 : nameConstraints : X509v3 Name Constraints | |
c2bbf9cf RL |
869 | !Cname crl-distribution-points |
870 | id-ce 31 : crlDistributionPoints : X509v3 CRL Distribution Points | |
871 | !Cname certificate-policies | |
872 | id-ce 32 : certificatePolicies : X509v3 Certificate Policies | |
ba5df66a DSH |
873 | !Cname any-policy |
874 | certificate-policies 0 : anyPolicy : X509v3 Any Policy | |
6f528cac DSH |
875 | !Cname policy-mappings |
876 | id-ce 33 : policyMappings : X509v3 Policy Mappings | |
c2bbf9cf RL |
877 | !Cname authority-key-identifier |
878 | id-ce 35 : authorityKeyIdentifier : X509v3 Authority Key Identifier | |
4b125068 RL |
879 | !Cname policy-constraints |
880 | id-ce 36 : policyConstraints : X509v3 Policy Constraints | |
c2bbf9cf RL |
881 | !Cname ext-key-usage |
882 | id-ce 37 : extendedKeyUsage : X509v3 Extended Key Usage | |
bac2f6db JW |
883 | !Cname authority-attribute-identifier |
884 | id-ce 38 : authorityAttributeIdentifier : X509v3 Authority Attribute Identifier | |
885 | !Cname role-spec-cert-identifier | |
886 | id-ce 39 : roleSpecCertIdentifier : X509v3 Role Specification Certificate Identifier | |
887 | !Cname basic-att-constraints | |
888 | id-ce 41 : basicAttConstraints : X509v3 Basic Attribute Certificate Constraints | |
889 | !Cname delegated-name-constraints | |
890 | id-ce 42 : delegatedNameConstraints : X509v3 Delegated Name Constraints | |
891 | !Cname time-specification | |
892 | id-ce 43 : timeSpecification : X509v3 Time Specification | |
249a77f5 DSH |
893 | !Cname freshest-crl |
894 | id-ce 46 : freshestCRL : X509v3 Freshest CRL | |
bac2f6db JW |
895 | !Cname attribute-descriptor |
896 | id-ce 48 : attributeDescriptor : X509v3 Attribute Descriptor | |
897 | !Cname user-notice | |
898 | id-ce 49 : userNotice : X509v3 User Notice | |
899 | !Cname soa-identifier | |
900 | id-ce 50 : sOAIdentifier : X509v3 Source of Authority Identifier | |
901 | !Cname acceptable-cert-policies | |
902 | id-ce 52 : acceptableCertPolicies : X509v3 Acceptable Certification Policies | |
edec614e DSH |
903 | !Cname inhibit-any-policy |
904 | id-ce 54 : inhibitAnyPolicy : X509v3 Inhibit Any Policy | |
4b125068 RL |
905 | !Cname target-information |
906 | id-ce 55 : targetInformation : X509v3 AC Targeting | |
907 | !Cname no-rev-avail | |
908 | id-ce 56 : noRevAvail : X509v3 No Revocation Available | |
bac2f6db JW |
909 | !Cname acceptable-privilege-policies |
910 | id-ce 57 : acceptablePrivPolicies : X509v3 Acceptable Privilege Policies | |
911 | !Cname indirect-issuer | |
912 | id-ce 61 : indirectIssuer : X509v3 Indirect Issuer | |
913 | !Cname no-assertion | |
914 | id-ce 62 : noAssertion : X509v3 No Assertion | |
915 | !Cname id-aa-issuing-distribution-point | |
916 | id-ce 63 : aAissuingDistributionPoint : X509v3 Attribute Authority Issuing Distribution Point | |
917 | !Cname issued-on-behalf-of | |
918 | id-ce 64 : issuedOnBehalfOf : X509v3 Issued On Behalf Of | |
919 | !Cname single-use | |
920 | id-ce 65 : singleUse : X509v3 Single Use | |
921 | !Cname group-ac | |
922 | id-ce 66 : groupAC : X509v3 Group Attribute Certificate | |
923 | !Cname allowed-attribute-assignments | |
924 | id-ce 67 : allowedAttributeAssignments : X509v3 Allowed Attribute Assignments | |
925 | !Cname attribute-mappings | |
926 | id-ce 68 : attributeMappings : X509v3 Attribute Mappings | |
927 | !Cname holder-name-constraints | |
928 | id-ce 69 : holderNameConstraints : X509v3 Holder Name Constraints | |
929 | !Cname authorization-validation | |
930 | id-ce 70 : authorizationValidation : X509v3 Authorization Validation | |
931 | !Cname prot-restrict | |
932 | id-ce 71 : protRestrict : X509v3 Protocol Restriction | |
933 | !Cname subject-alt-public-key-info | |
934 | id-ce 72 : subjectAltPublicKeyInfo : X509v3 Subject Alternative Public Key Info | |
935 | !Cname alt-signature-algorithm | |
936 | id-ce 73 : altSignatureAlgorithm : X509v3 Alternative Signature Algorithm | |
937 | !Cname alt-signature-value | |
938 | id-ce 74 : altSignatureValue : X509v3 Alternative Signature Value | |
939 | !Cname associated-information | |
940 | id-ce 75 : associatedInformation : X509v3 Associated Information | |
c2bbf9cf | 941 | |
df4c395c DSH |
942 | # From RFC5280 |
943 | ext-key-usage 0 : anyExtendedKeyUsage : Any Extended Key Usage | |
944 | ||
945 | ||
c2bbf9cf RL |
946 | !Cname netscape |
947 | 2 16 840 1 113730 : Netscape : Netscape Communications Corp. | |
948 | !Cname netscape-cert-extension | |
949 | netscape 1 : nsCertExt : Netscape Certificate Extension | |
950 | !Cname netscape-data-type | |
951 | netscape 2 : nsDataType : Netscape Data Type | |
952 | !Cname netscape-cert-type | |
953 | netscape-cert-extension 1 : nsCertType : Netscape Cert Type | |
954 | !Cname netscape-base-url | |
955 | netscape-cert-extension 2 : nsBaseUrl : Netscape Base Url | |
956 | !Cname netscape-revocation-url | |
957 | netscape-cert-extension 3 : nsRevocationUrl : Netscape Revocation Url | |
958 | !Cname netscape-ca-revocation-url | |
959 | netscape-cert-extension 4 : nsCaRevocationUrl : Netscape CA Revocation Url | |
960 | !Cname netscape-renewal-url | |
961 | netscape-cert-extension 7 : nsRenewalUrl : Netscape Renewal Url | |
962 | !Cname netscape-ca-policy-url | |
963 | netscape-cert-extension 8 : nsCaPolicyUrl : Netscape CA Policy Url | |
964 | !Cname netscape-ssl-server-name | |
965 | netscape-cert-extension 12 : nsSslServerName : Netscape SSL Server Name | |
966 | !Cname netscape-comment | |
967 | netscape-cert-extension 13 : nsComment : Netscape Comment | |
968 | !Cname netscape-cert-sequence | |
969 | netscape-data-type 5 : nsCertSequence : Netscape Certificate Sequence | |
970 | !Cname ns-sgc | |
971 | netscape 4 1 : nsSGC : Netscape Server Gated Crypto | |
d02b48c6 | 972 | |
622ec449 RL |
973 | # iso(1) |
974 | iso 3 : ORG : org | |
975 | org 6 : DOD : dod | |
976 | dod 1 : IANA : iana | |
977 | !Alias internet iana | |
978 | ||
979 | internet 1 : directory : Directory | |
980 | internet 2 : mgmt : Management | |
981 | internet 3 : experimental : Experimental | |
982 | internet 4 : private : Private | |
983 | internet 5 : security : Security | |
984 | internet 6 : snmpv2 : SNMPv2 | |
ea7fc031 LJ |
985 | # Documents refer to "internet 7" as "mail". This however leads to ambiguities |
986 | # with RFC2798, Section 9.1.3, where "mail" is defined as the short name for | |
987 | # rfc822Mailbox. The short name is therefore here left out for a reason. | |
46f4e1be | 988 | # Subclasses of "mail", e.g. "MIME MHS" don't constitute a problem, as |
ea7fc031 LJ |
989 | # references are realized via long name "Mail" (with capital M). |
990 | internet 7 : : Mail | |
622ec449 | 991 | |
4825092b | 992 | Private 1 : enterprises : Enterprises |
622ec449 RL |
993 | |
994 | # RFC 2247 | |
4825092b | 995 | Enterprises 1466 344 : dcobject : dcObject |
622ec449 | 996 | |
30911232 LJ |
997 | # RFC 1495 |
998 | Mail 1 : mime-mhs : MIME MHS | |
999 | mime-mhs 1 : mime-mhs-headings : mime-mhs-headings | |
1000 | mime-mhs 2 : mime-mhs-bodies : mime-mhs-bodies | |
1001 | mime-mhs-headings 1 : id-hex-partial-message : id-hex-partial-message | |
1002 | mime-mhs-headings 2 : id-hex-multipart-message : id-hex-multipart-message | |
1003 | ||
12048657 | 1004 | # RFC 3274 |
c2bbf9cf | 1005 | !Cname zlib-compression |
b510d775 | 1006 | id-smime-alg 8 : ZLIB : zlib compression |
622ec449 | 1007 | |
deb2c1a1 DSH |
1008 | # AES aka Rijndael |
1009 | ||
1010 | !Alias csor 2 16 840 1 101 3 | |
1011 | !Alias nistAlgorithms csor 4 | |
1012 | !Alias aes nistAlgorithms 1 | |
1013 | ||
1014 | aes 1 : AES-128-ECB : aes-128-ecb | |
1015 | aes 2 : AES-128-CBC : aes-128-cbc | |
ab1dee1e | 1016 | !Cname aes-128-ofb128 |
deb2c1a1 | 1017 | aes 3 : AES-128-OFB : aes-128-ofb |
ab1dee1e | 1018 | !Cname aes-128-cfb128 |
deb2c1a1 | 1019 | aes 4 : AES-128-CFB : aes-128-cfb |
e5a4de9e AP |
1020 | aes 5 : id-aes128-wrap |
1021 | aes 6 : id-aes128-GCM : aes-128-gcm | |
1022 | aes 7 : id-aes128-CCM : aes-128-ccm | |
1023 | aes 8 : id-aes128-wrap-pad | |
deb2c1a1 DSH |
1024 | |
1025 | aes 21 : AES-192-ECB : aes-192-ecb | |
1026 | aes 22 : AES-192-CBC : aes-192-cbc | |
ab1dee1e | 1027 | !Cname aes-192-ofb128 |
deb2c1a1 | 1028 | aes 23 : AES-192-OFB : aes-192-ofb |
ab1dee1e | 1029 | !Cname aes-192-cfb128 |
deb2c1a1 | 1030 | aes 24 : AES-192-CFB : aes-192-cfb |
e5a4de9e AP |
1031 | aes 25 : id-aes192-wrap |
1032 | aes 26 : id-aes192-GCM : aes-192-gcm | |
1033 | aes 27 : id-aes192-CCM : aes-192-ccm | |
1034 | aes 28 : id-aes192-wrap-pad | |
deb2c1a1 DSH |
1035 | |
1036 | aes 41 : AES-256-ECB : aes-256-ecb | |
1037 | aes 42 : AES-256-CBC : aes-256-cbc | |
ab1dee1e | 1038 | !Cname aes-256-ofb128 |
deb2c1a1 | 1039 | aes 43 : AES-256-OFB : aes-256-ofb |
ab1dee1e | 1040 | !Cname aes-256-cfb128 |
deb2c1a1 | 1041 | aes 44 : AES-256-CFB : aes-256-cfb |
e5a4de9e AP |
1042 | aes 45 : id-aes256-wrap |
1043 | aes 46 : id-aes256-GCM : aes-256-gcm | |
1044 | aes 47 : id-aes256-CCM : aes-256-ccm | |
1045 | aes 48 : id-aes256-wrap-pad | |
deb2c1a1 | 1046 | |
5cd42251 P |
1047 | ieee-siswg 0 1 1 : AES-128-XTS : aes-128-xts |
1048 | ieee-siswg 0 1 2 : AES-256-XTS : aes-256-xts | |
1049 | ||
8d1ebe0b RL |
1050 | # There are no OIDs for these modes... |
1051 | ||
1052 | : AES-128-CFB1 : aes-128-cfb1 | |
1053 | : AES-192-CFB1 : aes-192-cfb1 | |
1054 | : AES-256-CFB1 : aes-256-cfb1 | |
1055 | : AES-128-CFB8 : aes-128-cfb8 | |
1056 | : AES-192-CFB8 : aes-192-cfb8 | |
1057 | : AES-256-CFB8 : aes-256-cfb8 | |
e5a4de9e AP |
1058 | : AES-128-CTR : aes-128-ctr |
1059 | : AES-192-CTR : aes-192-ctr | |
1060 | : AES-256-CTR : aes-256-ctr | |
e6b336ef MC |
1061 | : AES-128-OCB : aes-128-ocb |
1062 | : AES-192-OCB : aes-192-ocb | |
1063 | : AES-256-OCB : aes-256-ocb | |
8d1ebe0b RL |
1064 | : DES-CFB1 : des-cfb1 |
1065 | : DES-CFB8 : des-cfb8 | |
1066 | : DES-EDE3-CFB1 : des-ede3-cfb1 | |
1067 | : DES-EDE3-CFB8 : des-ede3-cfb8 | |
1068 | ||
4811746f AP |
1069 | # OIDs for SHA224, SHA256, SHA385 and SHA512, according to x9.84 and |
1070 | # http://csrc.nist.gov/groups/ST/crypto_apps_infra/csor/algorithms.html | |
1071 | # "Middle" names are specified to be id-sha256, id-sha384, etc., but | |
1072 | # we adhere to unprefixed capitals for backward compatibility... | |
6bca8e38 AP |
1073 | !Alias nist_hashalgs nistAlgorithms 2 |
1074 | nist_hashalgs 1 : SHA256 : sha256 | |
1075 | nist_hashalgs 2 : SHA384 : sha384 | |
1076 | nist_hashalgs 3 : SHA512 : sha512 | |
1077 | nist_hashalgs 4 : SHA224 : sha224 | |
4811746f AP |
1078 | nist_hashalgs 5 : SHA512-224 : sha512-224 |
1079 | nist_hashalgs 6 : SHA512-256 : sha512-256 | |
1080 | nist_hashalgs 7 : SHA3-224 : sha3-224 | |
1081 | nist_hashalgs 8 : SHA3-256 : sha3-256 | |
1082 | nist_hashalgs 9 : SHA3-384 : sha3-384 | |
1083 | nist_hashalgs 10 : SHA3-512 : sha3-512 | |
1084 | nist_hashalgs 11 : SHAKE128 : shake128 | |
1085 | nist_hashalgs 12 : SHAKE256 : shake256 | |
1086 | nist_hashalgs 13 : id-hmacWithSHA3-224 : hmac-sha3-224 | |
1087 | nist_hashalgs 14 : id-hmacWithSHA3-256 : hmac-sha3-256 | |
1088 | nist_hashalgs 15 : id-hmacWithSHA3-384 : hmac-sha3-384 | |
1089 | nist_hashalgs 16 : id-hmacWithSHA3-512 : hmac-sha3-512 | |
1090 | # Below two are incomplete OIDs, to be uncommented when we figure out | |
1091 | # how to handle them... | |
1092 | # nist_hashalgs 17 : id-shake128-len : shake128-len | |
1093 | # nist_hashalgs 18 : id-shake256-len : shake256-len | |
3f1679b2 P |
1094 | nist_hashalgs 19 : KMAC128 : kmac128 |
1095 | nist_hashalgs 20 : KMAC256 : kmac256 | |
1096 | # nist_hashalgs 21 : KMAC128-XOF : kmac128-xof | |
1097 | # nist_hashalgs 22 : KMAC256-XOF : kmac256-xof | |
6bca8e38 | 1098 | |
357d5de5 NL |
1099 | # OIDs for dsa-with-sha224 and dsa-with-sha256 |
1100 | !Alias dsa_with_sha2 nistAlgorithms 3 | |
1101 | dsa_with_sha2 1 : dsa_with_SHA224 | |
1102 | dsa_with_sha2 2 : dsa_with_SHA256 | |
4811746f AP |
1103 | # Above two belong below, but kept as they are for backward compatibility |
1104 | !Alias sigAlgs nistAlgorithms 3 | |
1105 | sigAlgs 3 : id-dsa-with-sha384 : dsa_with_SHA384 | |
1106 | sigAlgs 4 : id-dsa-with-sha512 : dsa_with_SHA512 | |
1107 | sigAlgs 5 : id-dsa-with-sha3-224 : dsa_with_SHA3-224 | |
1108 | sigAlgs 6 : id-dsa-with-sha3-256 : dsa_with_SHA3-256 | |
1109 | sigAlgs 7 : id-dsa-with-sha3-384 : dsa_with_SHA3-384 | |
1110 | sigAlgs 8 : id-dsa-with-sha3-512 : dsa_with_SHA3-512 | |
1111 | sigAlgs 9 : id-ecdsa-with-sha3-224 : ecdsa_with_SHA3-224 | |
1112 | sigAlgs 10 : id-ecdsa-with-sha3-256 : ecdsa_with_SHA3-256 | |
1113 | sigAlgs 11 : id-ecdsa-with-sha3-384 : ecdsa_with_SHA3-384 | |
1114 | sigAlgs 12 : id-ecdsa-with-sha3-512 : ecdsa_with_SHA3-512 | |
1115 | sigAlgs 13 : id-rsassa-pkcs1-v1_5-with-sha3-224 : RSA-SHA3-224 | |
1116 | sigAlgs 14 : id-rsassa-pkcs1-v1_5-with-sha3-256 : RSA-SHA3-256 | |
f9f3e175 | 1117 | sigAlgs 15 : id-rsassa-pkcs1-v1_5-with-sha3-384 : RSA-SHA3-384 |
4811746f | 1118 | sigAlgs 16 : id-rsassa-pkcs1-v1_5-with-sha3-512 : RSA-SHA3-512 |
357d5de5 | 1119 | |
a6b7ffdd DSH |
1120 | # Hold instruction CRL entry extension |
1121 | !Cname hold-instruction-code | |
1122 | id-ce 23 : holdInstructionCode : Hold Instruction Code | |
1123 | !Alias holdInstruction X9-57 2 | |
1124 | !Cname hold-instruction-none | |
1125 | holdInstruction 1 : holdInstructionNone : Hold Instruction None | |
1126 | !Cname hold-instruction-call-issuer | |
1127 | holdInstruction 2 : holdInstructionCallIssuer : Hold Instruction Call Issuer | |
1128 | !Cname hold-instruction-reject | |
1129 | holdInstruction 3 : holdInstructionReject : Hold Instruction Reject | |
64b48877 | 1130 | |
f9d183c2 | 1131 | # OID's from ITU-T. Most of this is defined in RFC 1274. A couple of |
64b48877 | 1132 | # them are also mentioned in RFC 2247 |
5f7d4e91 LJ |
1133 | # OIDs specific to Electronic Signature Standard/CAdES are as specified in |
1134 | # ETSI EN 319 122-1 V1.2.1 (2021-10): | |
1135 | # Electronic Signatures and Infrastructures (ESI); CAdES digital signatures; | |
1136 | # Part 1: Building blocks and CAdES baseline signatures | |
1137 | itu-t 4 : itu-t-identified-organization | |
1138 | itu-t-identified-organization 0: etsi | |
1139 | etsi 1733 : electronic-signature-standard | |
1140 | electronic-signature-standard 2: ess-attributes | |
1141 | ess-attributes 1 : id-aa-ets-mimeType | |
1142 | ess-attributes 2 : id-aa-ets-longTermValidation | |
1143 | ess-attributes 3 : id-aa-ets-SignaturePolicyDocument | |
1144 | ess-attributes 4 : id-aa-ets-archiveTimestampV3 | |
1145 | ess-attributes 5 : id-aa-ATSHashIndex | |
1146 | etsi 19122 : cades | |
1147 | cades 1 : cades-attributes | |
1148 | cades-attributes 1 : id-aa-ets-signerAttrV2 | |
1149 | cades-attributes 3 : id-aa-ets-sigPolicyStore | |
1150 | cades-attributes 4 : id-aa-ATSHashIndex-v2 | |
1151 | cades-attributes 5 : id-aa-ATSHashIndex-v3 | |
1152 | cades-attributes 6 : signedAssertion | |
1153 | ||
f9d183c2 | 1154 | itu-t 9 : data |
64b48877 RL |
1155 | data 2342 : pss |
1156 | pss 19200300 : ucl | |
1157 | ucl 100 : pilot | |
1158 | pilot 1 : : pilotAttributeType | |
1159 | pilot 3 : : pilotAttributeSyntax | |
1160 | pilot 4 : : pilotObjectClass | |
1161 | pilot 10 : : pilotGroups | |
1162 | pilotAttributeSyntax 4 : : iA5StringSyntax | |
1163 | pilotAttributeSyntax 5 : : caseIgnoreIA5StringSyntax | |
1164 | pilotObjectClass 3 : : pilotObject | |
1165 | pilotObjectClass 4 : : pilotPerson | |
1166 | pilotObjectClass 5 : account | |
1167 | pilotObjectClass 6 : document | |
1168 | pilotObjectClass 7 : room | |
1169 | pilotObjectClass 9 : : documentSeries | |
1170 | pilotObjectClass 13 : domain : Domain | |
1171 | pilotObjectClass 14 : : rFC822localPart | |
1172 | pilotObjectClass 15 : : dNSDomain | |
1173 | pilotObjectClass 17 : : domainRelatedObject | |
1174 | pilotObjectClass 18 : : friendlyCountry | |
1175 | pilotObjectClass 19 : : simpleSecurityObject | |
1176 | pilotObjectClass 20 : : pilotOrganization | |
1177 | pilotObjectClass 21 : : pilotDSA | |
1178 | pilotObjectClass 22 : : qualityLabelledData | |
d4704d52 | 1179 | pilotAttributeType 1 : UID : userId |
64b48877 | 1180 | pilotAttributeType 2 : : textEncodedORAddress |
ea7fc031 | 1181 | pilotAttributeType 3 : mail : rfc822Mailbox |
64b48877 RL |
1182 | pilotAttributeType 4 : info |
1183 | pilotAttributeType 5 : : favouriteDrink | |
1184 | pilotAttributeType 6 : : roomNumber | |
1185 | pilotAttributeType 7 : photo | |
1186 | pilotAttributeType 8 : : userClass | |
1187 | pilotAttributeType 9 : host | |
1188 | pilotAttributeType 10 : manager | |
1189 | pilotAttributeType 11 : : documentIdentifier | |
1190 | pilotAttributeType 12 : : documentTitle | |
1191 | pilotAttributeType 13 : : documentVersion | |
1192 | pilotAttributeType 14 : : documentAuthor | |
1193 | pilotAttributeType 15 : : documentLocation | |
1194 | pilotAttributeType 20 : : homeTelephoneNumber | |
1195 | pilotAttributeType 21 : secretary | |
1196 | pilotAttributeType 22 : : otherMailbox | |
1197 | pilotAttributeType 23 : : lastModifiedTime | |
1198 | pilotAttributeType 24 : : lastModifiedBy | |
1199 | pilotAttributeType 25 : DC : domainComponent | |
1200 | pilotAttributeType 26 : : aRecord | |
1d00800e | 1201 | pilotAttributeType 27 : : pilotAttributeType27 |
64b48877 RL |
1202 | pilotAttributeType 28 : : mXRecord |
1203 | pilotAttributeType 29 : : nSRecord | |
1204 | pilotAttributeType 30 : : sOARecord | |
1205 | pilotAttributeType 31 : : cNAMERecord | |
1206 | pilotAttributeType 37 : : associatedDomain | |
1207 | pilotAttributeType 38 : : associatedName | |
1208 | pilotAttributeType 39 : : homePostalAddress | |
1209 | pilotAttributeType 40 : : personalTitle | |
1210 | pilotAttributeType 41 : : mobileTelephoneNumber | |
1211 | pilotAttributeType 42 : : pagerTelephoneNumber | |
1212 | pilotAttributeType 43 : : friendlyCountryName | |
c81f425e | 1213 | pilotAttributeType 44 : uid : uniqueIdentifier |
64b48877 RL |
1214 | pilotAttributeType 45 : : organizationalStatus |
1215 | pilotAttributeType 46 : : janetMailbox | |
1216 | pilotAttributeType 47 : : mailPreferenceOption | |
1217 | pilotAttributeType 48 : : buildingName | |
1218 | pilotAttributeType 49 : : dSAQuality | |
1219 | pilotAttributeType 50 : : singleLevelQuality | |
1220 | pilotAttributeType 51 : : subtreeMinimumQuality | |
1221 | pilotAttributeType 52 : : subtreeMaximumQuality | |
1222 | pilotAttributeType 53 : : personalSignature | |
1223 | pilotAttributeType 54 : : dITRedirect | |
1224 | pilotAttributeType 55 : audio | |
1225 | pilotAttributeType 56 : : documentPublisher | |
82869b3c | 1226 | |
f9d183c2 | 1227 | international-organizations 42 : id-set : Secure Electronic Transactions |
82869b3c LJ |
1228 | |
1229 | id-set 0 : set-ctype : content types | |
1230 | id-set 1 : set-msgExt : message extensions | |
1231 | id-set 3 : set-attr | |
1232 | id-set 5 : set-policy | |
1233 | id-set 7 : set-certExt : certificate extensions | |
1234 | id-set 8 : set-brand | |
1235 | ||
1236 | set-ctype 0 : setct-PANData | |
1237 | set-ctype 1 : setct-PANToken | |
1238 | set-ctype 2 : setct-PANOnly | |
1239 | set-ctype 3 : setct-OIData | |
1240 | set-ctype 4 : setct-PI | |
1241 | set-ctype 5 : setct-PIData | |
1242 | set-ctype 6 : setct-PIDataUnsigned | |
1243 | set-ctype 7 : setct-HODInput | |
1244 | set-ctype 8 : setct-AuthResBaggage | |
1245 | set-ctype 9 : setct-AuthRevReqBaggage | |
1246 | set-ctype 10 : setct-AuthRevResBaggage | |
1247 | set-ctype 11 : setct-CapTokenSeq | |
1248 | set-ctype 12 : setct-PInitResData | |
1249 | set-ctype 13 : setct-PI-TBS | |
1250 | set-ctype 14 : setct-PResData | |
1251 | set-ctype 16 : setct-AuthReqTBS | |
1252 | set-ctype 17 : setct-AuthResTBS | |
1253 | set-ctype 18 : setct-AuthResTBSX | |
1254 | set-ctype 19 : setct-AuthTokenTBS | |
1255 | set-ctype 20 : setct-CapTokenData | |
1256 | set-ctype 21 : setct-CapTokenTBS | |
1257 | set-ctype 22 : setct-AcqCardCodeMsg | |
1258 | set-ctype 23 : setct-AuthRevReqTBS | |
1259 | set-ctype 24 : setct-AuthRevResData | |
1260 | set-ctype 25 : setct-AuthRevResTBS | |
1261 | set-ctype 26 : setct-CapReqTBS | |
1262 | set-ctype 27 : setct-CapReqTBSX | |
1263 | set-ctype 28 : setct-CapResData | |
1264 | set-ctype 29 : setct-CapRevReqTBS | |
1265 | set-ctype 30 : setct-CapRevReqTBSX | |
1266 | set-ctype 31 : setct-CapRevResData | |
1267 | set-ctype 32 : setct-CredReqTBS | |
1268 | set-ctype 33 : setct-CredReqTBSX | |
1269 | set-ctype 34 : setct-CredResData | |
1270 | set-ctype 35 : setct-CredRevReqTBS | |
1271 | set-ctype 36 : setct-CredRevReqTBSX | |
1272 | set-ctype 37 : setct-CredRevResData | |
1273 | set-ctype 38 : setct-PCertReqData | |
1274 | set-ctype 39 : setct-PCertResTBS | |
1275 | set-ctype 40 : setct-BatchAdminReqData | |
1276 | set-ctype 41 : setct-BatchAdminResData | |
1277 | set-ctype 42 : setct-CardCInitResTBS | |
1278 | set-ctype 43 : setct-MeAqCInitResTBS | |
1279 | set-ctype 44 : setct-RegFormResTBS | |
1280 | set-ctype 45 : setct-CertReqData | |
1281 | set-ctype 46 : setct-CertReqTBS | |
1282 | set-ctype 47 : setct-CertResData | |
1283 | set-ctype 48 : setct-CertInqReqTBS | |
1284 | set-ctype 49 : setct-ErrorTBS | |
1285 | set-ctype 50 : setct-PIDualSignedTBE | |
1286 | set-ctype 51 : setct-PIUnsignedTBE | |
1287 | set-ctype 52 : setct-AuthReqTBE | |
1288 | set-ctype 53 : setct-AuthResTBE | |
1289 | set-ctype 54 : setct-AuthResTBEX | |
1290 | set-ctype 55 : setct-AuthTokenTBE | |
1291 | set-ctype 56 : setct-CapTokenTBE | |
1292 | set-ctype 57 : setct-CapTokenTBEX | |
1293 | set-ctype 58 : setct-AcqCardCodeMsgTBE | |
1294 | set-ctype 59 : setct-AuthRevReqTBE | |
1295 | set-ctype 60 : setct-AuthRevResTBE | |
1296 | set-ctype 61 : setct-AuthRevResTBEB | |
1297 | set-ctype 62 : setct-CapReqTBE | |
1298 | set-ctype 63 : setct-CapReqTBEX | |
1299 | set-ctype 64 : setct-CapResTBE | |
1300 | set-ctype 65 : setct-CapRevReqTBE | |
1301 | set-ctype 66 : setct-CapRevReqTBEX | |
1302 | set-ctype 67 : setct-CapRevResTBE | |
1303 | set-ctype 68 : setct-CredReqTBE | |
1304 | set-ctype 69 : setct-CredReqTBEX | |
1305 | set-ctype 70 : setct-CredResTBE | |
1306 | set-ctype 71 : setct-CredRevReqTBE | |
1307 | set-ctype 72 : setct-CredRevReqTBEX | |
1308 | set-ctype 73 : setct-CredRevResTBE | |
1309 | set-ctype 74 : setct-BatchAdminReqTBE | |
1310 | set-ctype 75 : setct-BatchAdminResTBE | |
1311 | set-ctype 76 : setct-RegFormReqTBE | |
1312 | set-ctype 77 : setct-CertReqTBE | |
1313 | set-ctype 78 : setct-CertReqTBEX | |
1314 | set-ctype 79 : setct-CertResTBE | |
1315 | set-ctype 80 : setct-CRLNotificationTBS | |
1316 | set-ctype 81 : setct-CRLNotificationResTBS | |
1317 | set-ctype 82 : setct-BCIDistributionTBS | |
1318 | ||
1319 | set-msgExt 1 : setext-genCrypt : generic cryptogram | |
1320 | set-msgExt 3 : setext-miAuth : merchant initiated auth | |
1321 | set-msgExt 4 : setext-pinSecure | |
1322 | set-msgExt 5 : setext-pinAny | |
1323 | set-msgExt 7 : setext-track2 | |
1324 | set-msgExt 8 : setext-cv : additional verification | |
1325 | ||
1326 | set-policy 0 : set-policy-root | |
1327 | ||
1328 | set-certExt 0 : setCext-hashedRoot | |
1329 | set-certExt 1 : setCext-certType | |
1330 | set-certExt 2 : setCext-merchData | |
1331 | set-certExt 3 : setCext-cCertRequired | |
1332 | set-certExt 4 : setCext-tunneling | |
1333 | set-certExt 5 : setCext-setExt | |
1334 | set-certExt 6 : setCext-setQualf | |
1335 | set-certExt 7 : setCext-PGWYcapabilities | |
1336 | set-certExt 8 : setCext-TokenIdentifier | |
1337 | set-certExt 9 : setCext-Track2Data | |
1338 | set-certExt 10 : setCext-TokenType | |
1339 | set-certExt 11 : setCext-IssuerCapabilities | |
1340 | ||
1341 | set-attr 0 : setAttr-Cert | |
1342 | set-attr 1 : setAttr-PGWYcap : payment gateway capabilities | |
1343 | set-attr 2 : setAttr-TokenType | |
1344 | set-attr 3 : setAttr-IssCap : issuer capabilities | |
1345 | ||
1346 | setAttr-Cert 0 : set-rootKeyThumb | |
1347 | setAttr-Cert 1 : set-addPolicy | |
1348 | ||
1349 | setAttr-TokenType 1 : setAttr-Token-EMV | |
1350 | setAttr-TokenType 2 : setAttr-Token-B0Prime | |
1351 | ||
1352 | setAttr-IssCap 3 : setAttr-IssCap-CVM | |
1353 | setAttr-IssCap 4 : setAttr-IssCap-T2 | |
1354 | setAttr-IssCap 5 : setAttr-IssCap-Sig | |
1355 | ||
1356 | setAttr-IssCap-CVM 1 : setAttr-GenCryptgrm : generate cryptogram | |
1357 | setAttr-IssCap-T2 1 : setAttr-T2Enc : encrypted track 2 | |
1358 | setAttr-IssCap-T2 2 : setAttr-T2cleartxt : cleartext track 2 | |
1359 | ||
1360 | setAttr-IssCap-Sig 1 : setAttr-TokICCsig : ICC or token signature | |
1361 | setAttr-IssCap-Sig 2 : setAttr-SecDevSig : secure device signature | |
1362 | ||
1363 | set-brand 1 : set-brand-IATA-ATA | |
1364 | set-brand 30 : set-brand-Diners | |
1365 | set-brand 34 : set-brand-AmericanExpress | |
1366 | set-brand 35 : set-brand-JCB | |
1367 | set-brand 4 : set-brand-Visa | |
1368 | set-brand 5 : set-brand-MasterCard | |
1369 | set-brand 6011 : set-brand-Novus | |
1370 | ||
1371 | rsadsi 3 10 : DES-CDMF : des-cdmf | |
1372 | rsadsi 1 1 6 : rsaOAEPEncryptionSET | |
0d78bc33 RL |
1373 | |
1374 | : Oakley-EC2N-3 : ipsec3 | |
1375 | : Oakley-EC2N-4 : ipsec4 | |
f106fb85 AP |
1376 | |
1377 | iso 0 10118 3 0 55 : whirlpool | |
74e564cd DSH |
1378 | |
1379 | # GOST OIDs | |
1380 | ||
1381 | member-body 643 2 2 : cryptopro | |
362ab3e4 | 1382 | member-body 643 2 9 : cryptocom |
31001f81 | 1383 | member-body 643 7 1 : id-tc26 |
228b4e42 | 1384 | |
74e564cd DSH |
1385 | cryptopro 3 : id-GostR3411-94-with-GostR3410-2001 : GOST R 34.11-94 with GOST R 34.10-2001 |
1386 | cryptopro 4 : id-GostR3411-94-with-GostR3410-94 : GOST R 34.11-94 with GOST R 34.10-94 | |
228b4e42 DSH |
1387 | !Cname id-GostR3411-94 |
1388 | cryptopro 9 : md_gost94 : GOST R 34.11-94 | |
362ab3e4 | 1389 | cryptopro 10 : id-HMACGostR3411-94 : HMAC GOST 34.11-94 |
5a47825e DSH |
1390 | !Cname id-GostR3410-2001 |
1391 | cryptopro 19 : gost2001 : GOST R 34.10-2001 | |
1392 | !Cname id-GostR3410-94 | |
1393 | cryptopro 20 : gost94 : GOST R 34.10-94 | |
5e0e9fce DSH |
1394 | !Cname id-Gost28147-89 |
1395 | cryptopro 21 : gost89 : GOST 28147-89 | |
9981a51e | 1396 | : gost89-cnt |
31001f81 | 1397 | : gost89-cnt-12 |
52ee3ed3 DB |
1398 | : gost89-cbc |
1399 | : gost89-ecb | |
1400 | : gost89-ctr | |
16fe5f8b | 1401 | !Cname id-Gost28147-89-MAC |
81025661 | 1402 | cryptopro 22 : gost-mac : GOST 28147-89 MAC |
31001f81 | 1403 | : gost-mac-12 |
228b4e42 DSH |
1404 | !Cname id-GostR3411-94-prf |
1405 | cryptopro 23 : prf-gostr3411-94 : GOST R 34.11-94 PRF | |
362ab3e4 DSH |
1406 | cryptopro 98 : id-GostR3410-2001DH : GOST R 34.10-2001 DH |
1407 | cryptopro 99 : id-GostR3410-94DH : GOST R 34.10-94 DH | |
1408 | ||
1409 | cryptopro 14 1 : id-Gost28147-89-CryptoPro-KeyMeshing | |
1410 | cryptopro 14 0 : id-Gost28147-89-None-KeyMeshing | |
2aed84d1 DSH |
1411 | |
1412 | # GOST parameter set OIDs | |
1413 | ||
1414 | cryptopro 30 0 : id-GostR3411-94-TestParamSet | |
1415 | cryptopro 30 1 : id-GostR3411-94-CryptoProParamSet | |
1416 | ||
1417 | cryptopro 31 0 : id-Gost28147-89-TestParamSet | |
1418 | cryptopro 31 1 : id-Gost28147-89-CryptoPro-A-ParamSet | |
1419 | cryptopro 31 2 : id-Gost28147-89-CryptoPro-B-ParamSet | |
1420 | cryptopro 31 3 : id-Gost28147-89-CryptoPro-C-ParamSet | |
1421 | cryptopro 31 4 : id-Gost28147-89-CryptoPro-D-ParamSet | |
1422 | cryptopro 31 5 : id-Gost28147-89-CryptoPro-Oscar-1-1-ParamSet | |
1423 | cryptopro 31 6 : id-Gost28147-89-CryptoPro-Oscar-1-0-ParamSet | |
1424 | cryptopro 31 7 : id-Gost28147-89-CryptoPro-RIC-1-ParamSet | |
1425 | ||
1426 | cryptopro 32 0 : id-GostR3410-94-TestParamSet | |
1427 | cryptopro 32 2 : id-GostR3410-94-CryptoPro-A-ParamSet | |
1428 | cryptopro 32 3 : id-GostR3410-94-CryptoPro-B-ParamSet | |
1429 | cryptopro 32 4 : id-GostR3410-94-CryptoPro-C-ParamSet | |
1430 | cryptopro 32 5 : id-GostR3410-94-CryptoPro-D-ParamSet | |
1431 | ||
1432 | cryptopro 33 1 : id-GostR3410-94-CryptoPro-XchA-ParamSet | |
1433 | cryptopro 33 2 : id-GostR3410-94-CryptoPro-XchB-ParamSet | |
1434 | cryptopro 33 3 : id-GostR3410-94-CryptoPro-XchC-ParamSet | |
1435 | ||
1436 | cryptopro 35 0 : id-GostR3410-2001-TestParamSet | |
1437 | cryptopro 35 1 : id-GostR3410-2001-CryptoPro-A-ParamSet | |
1438 | cryptopro 35 2 : id-GostR3410-2001-CryptoPro-B-ParamSet | |
1439 | cryptopro 35 3 : id-GostR3410-2001-CryptoPro-C-ParamSet | |
1440 | ||
1441 | cryptopro 36 0 : id-GostR3410-2001-CryptoPro-XchA-ParamSet | |
1442 | cryptopro 36 1 : id-GostR3410-2001-CryptoPro-XchB-ParamSet | |
1443 | ||
362ab3e4 DSH |
1444 | id-GostR3410-94 1 : id-GostR3410-94-a |
1445 | id-GostR3410-94 2 : id-GostR3410-94-aBis | |
1446 | id-GostR3410-94 3 : id-GostR3410-94-b | |
1447 | id-GostR3410-94 4 : id-GostR3410-94-bBis | |
1448 | ||
1449 | # Cryptocom LTD GOST OIDs | |
1450 | ||
228b4e42 | 1451 | cryptocom 1 6 1 : id-Gost28147-89-cc : GOST 28147-89 Cryptocom ParamSet |
de908d63 | 1452 | !Cname id-GostR3410-94-cc |
362ab3e4 | 1453 | cryptocom 1 5 3 : gost94cc : GOST 34.10-94 Cryptocom |
de908d63 | 1454 | !Cname id-GostR3410-2001-cc |
362ab3e4 DSH |
1455 | cryptocom 1 5 4 : gost2001cc : GOST 34.10-2001 Cryptocom |
1456 | ||
d2027098 DSH |
1457 | cryptocom 1 3 3 : id-GostR3411-94-with-GostR3410-94-cc : GOST R 34.11-94 with GOST R 34.10-94 Cryptocom |
1458 | cryptocom 1 3 4 : id-GostR3411-94-with-GostR3410-2001-cc : GOST R 34.11-94 with GOST R 34.10-2001 Cryptocom | |
362ab3e4 DSH |
1459 | |
1460 | cryptocom 1 8 1 : id-GostR3410-2001-ParamSet-cc : GOST R 3410-2001 Parameter Set Cryptocom | |
f3dea9a5 | 1461 | |
31001f81 DB |
1462 | # TC26 GOST OIDs |
1463 | ||
1464 | id-tc26 1 : id-tc26-algorithms | |
1465 | id-tc26-algorithms 1 : id-tc26-sign | |
1466 | !Cname id-GostR3410-2012-256 | |
1467 | id-tc26-sign 1 : gost2012_256: GOST R 34.10-2012 with 256 bit modulus | |
1468 | !Cname id-GostR3410-2012-512 | |
1469 | id-tc26-sign 2 : gost2012_512: GOST R 34.10-2012 with 512 bit modulus | |
1470 | ||
1471 | id-tc26-algorithms 2 : id-tc26-digest | |
1472 | !Cname id-GostR3411-2012-256 | |
1473 | id-tc26-digest 2 : md_gost12_256: GOST R 34.11-2012 with 256 bit hash | |
1474 | !Cname id-GostR3411-2012-512 | |
1475 | id-tc26-digest 3 : md_gost12_512: GOST R 34.11-2012 with 512 bit hash | |
1476 | ||
1477 | id-tc26-algorithms 3 : id-tc26-signwithdigest | |
1478 | id-tc26-signwithdigest 2: id-tc26-signwithdigest-gost3410-2012-256: GOST R 34.10-2012 with GOST R 34.11-2012 (256 bit) | |
1479 | id-tc26-signwithdigest 3: id-tc26-signwithdigest-gost3410-2012-512: GOST R 34.10-2012 with GOST R 34.11-2012 (512 bit) | |
1480 | ||
1481 | id-tc26-algorithms 4 : id-tc26-mac | |
1482 | id-tc26-mac 1 : id-tc26-hmac-gost-3411-2012-256 : HMAC GOST 34.11-2012 256 bit | |
1483 | id-tc26-mac 2 : id-tc26-hmac-gost-3411-2012-512 : HMAC GOST 34.11-2012 512 bit | |
1484 | ||
1485 | id-tc26-algorithms 5 : id-tc26-cipher | |
55fc247a | 1486 | id-tc26-cipher 1 : id-tc26-cipher-gostr3412-2015-magma |
ad16671d DB |
1487 | id-tc26-cipher-gostr3412-2015-magma 1 : magma-ctr-acpkm |
1488 | id-tc26-cipher-gostr3412-2015-magma 2 : magma-ctr-acpkm-omac | |
55fc247a | 1489 | id-tc26-cipher 2 : id-tc26-cipher-gostr3412-2015-kuznyechik |
ad16671d DB |
1490 | id-tc26-cipher-gostr3412-2015-kuznyechik 1 : kuznyechik-ctr-acpkm |
1491 | id-tc26-cipher-gostr3412-2015-kuznyechik 2 : kuznyechik-ctr-acpkm-omac | |
31001f81 DB |
1492 | |
1493 | id-tc26-algorithms 6 : id-tc26-agreement | |
1494 | id-tc26-agreement 1 : id-tc26-agreement-gost-3410-2012-256 | |
1495 | id-tc26-agreement 2 : id-tc26-agreement-gost-3410-2012-512 | |
1496 | ||
55fc247a DB |
1497 | id-tc26-algorithms 7 : id-tc26-wrap |
1498 | id-tc26-wrap 1 : id-tc26-wrap-gostr3412-2015-magma | |
ad16671d | 1499 | id-tc26-wrap-gostr3412-2015-magma 1 : magma-kexp15 |
55fc247a | 1500 | id-tc26-wrap 2 : id-tc26-wrap-gostr3412-2015-kuznyechik |
ad16671d | 1501 | id-tc26-wrap-gostr3412-2015-kuznyechik 1 : kuznyechik-kexp15 |
55fc247a | 1502 | |
31001f81 DB |
1503 | id-tc26 2 : id-tc26-constants |
1504 | ||
1505 | id-tc26-constants 1 : id-tc26-sign-constants | |
3b5e5172 SZ |
1506 | id-tc26-sign-constants 1: id-tc26-gost-3410-2012-256-constants |
1507 | id-tc26-gost-3410-2012-256-constants 1 : id-tc26-gost-3410-2012-256-paramSetA: GOST R 34.10-2012 (256 bit) ParamSet A | |
55fc247a DB |
1508 | id-tc26-gost-3410-2012-256-constants 2 : id-tc26-gost-3410-2012-256-paramSetB: GOST R 34.10-2012 (256 bit) ParamSet B |
1509 | id-tc26-gost-3410-2012-256-constants 3 : id-tc26-gost-3410-2012-256-paramSetC: GOST R 34.10-2012 (256 bit) ParamSet C | |
1510 | id-tc26-gost-3410-2012-256-constants 4 : id-tc26-gost-3410-2012-256-paramSetD: GOST R 34.10-2012 (256 bit) ParamSet D | |
31001f81 DB |
1511 | id-tc26-sign-constants 2: id-tc26-gost-3410-2012-512-constants |
1512 | id-tc26-gost-3410-2012-512-constants 0 : id-tc26-gost-3410-2012-512-paramSetTest: GOST R 34.10-2012 (512 bit) testing parameter set | |
1513 | id-tc26-gost-3410-2012-512-constants 1 : id-tc26-gost-3410-2012-512-paramSetA: GOST R 34.10-2012 (512 bit) ParamSet A | |
1514 | id-tc26-gost-3410-2012-512-constants 2 : id-tc26-gost-3410-2012-512-paramSetB: GOST R 34.10-2012 (512 bit) ParamSet B | |
3b5e5172 | 1515 | id-tc26-gost-3410-2012-512-constants 3 : id-tc26-gost-3410-2012-512-paramSetC: GOST R 34.10-2012 (512 bit) ParamSet C |
31001f81 DB |
1516 | |
1517 | id-tc26-constants 2 : id-tc26-digest-constants | |
1518 | id-tc26-constants 5 : id-tc26-cipher-constants | |
1519 | id-tc26-cipher-constants 1 : id-tc26-gost-28147-constants | |
1520 | id-tc26-gost-28147-constants 1 : id-tc26-gost-28147-param-Z : GOST 28147-89 TC26 parameter set | |
1521 | ||
1522 | member-body 643 3 131 1 1 : INN : INN | |
1523 | member-body 643 100 1 : OGRN : OGRN | |
1524 | member-body 643 100 3 : SNILS : SNILS | |
856198aa | 1525 | member-body 643 100 5 : OGRNIP : OGRNIP |
31001f81 DB |
1526 | member-body 643 100 111 : subjectSignTool : Signing Tool of Subject |
1527 | member-body 643 100 112 : issuerSignTool : Signing Tool of Issuer | |
856198aa DB |
1528 | member-body 643 100 113 : classSignTool : Class of Signing Tool |
1529 | member-body 643 100 113 1 : classSignToolKC1 : Class of Signing Tool KC1 | |
1530 | member-body 643 100 113 2 : classSignToolKC2 : Class of Signing Tool KC2 | |
1531 | member-body 643 100 113 3 : classSignToolKC3 : Class of Signing Tool KC3 | |
1532 | member-body 643 100 113 4 : classSignToolKB1 : Class of Signing Tool KB1 | |
1533 | member-body 643 100 113 5 : classSignToolKB2 : Class of Signing Tool KB2 | |
1534 | member-body 643 100 113 6 : classSignToolKA1 : Class of Signing Tool KA1 | |
31001f81 | 1535 | |
52ee3ed3 | 1536 | #GOST R34.13-2015 Grasshopper "Kuznechik" |
ad16671d DB |
1537 | : kuznyechik-ecb |
1538 | : kuznyechik-ctr | |
1539 | : kuznyechik-ofb | |
1540 | : kuznyechik-cbc | |
1541 | : kuznyechik-cfb | |
1542 | : kuznyechik-mac | |
52ee3ed3 | 1543 | |
55fc247a DB |
1544 | #GOST R34.13-2015 Magma |
1545 | : magma-ecb | |
1546 | : magma-ctr | |
1547 | : magma-ofb | |
1548 | : magma-cbc | |
1549 | : magma-cfb | |
1550 | : magma-mac | |
1551 | ||
f3dea9a5 BM |
1552 | # Definitions for Camellia cipher - CBC MODE |
1553 | ||
1554 | 1 2 392 200011 61 1 1 1 2 : CAMELLIA-128-CBC : camellia-128-cbc | |
1555 | 1 2 392 200011 61 1 1 1 3 : CAMELLIA-192-CBC : camellia-192-cbc | |
1556 | 1 2 392 200011 61 1 1 1 4 : CAMELLIA-256-CBC : camellia-256-cbc | |
e5a4de9e AP |
1557 | 1 2 392 200011 61 1 1 3 2 : id-camellia128-wrap |
1558 | 1 2 392 200011 61 1 1 3 3 : id-camellia192-wrap | |
1559 | 1 2 392 200011 61 1 1 3 4 : id-camellia256-wrap | |
f3dea9a5 BM |
1560 | |
1561 | # Definitions for Camellia cipher - ECB, CFB, OFB MODE | |
1562 | ||
1563 | !Alias ntt-ds 0 3 4401 5 | |
f19a5ff9 | 1564 | !Alias camellia ntt-ds 3 1 9 |
f3dea9a5 BM |
1565 | |
1566 | camellia 1 : CAMELLIA-128-ECB : camellia-128-ecb | |
1567 | !Cname camellia-128-ofb128 | |
1568 | camellia 3 : CAMELLIA-128-OFB : camellia-128-ofb | |
1569 | !Cname camellia-128-cfb128 | |
1570 | camellia 4 : CAMELLIA-128-CFB : camellia-128-cfb | |
c79e1773 AP |
1571 | camellia 6 : CAMELLIA-128-GCM : camellia-128-gcm |
1572 | camellia 7 : CAMELLIA-128-CCM : camellia-128-ccm | |
1573 | camellia 9 : CAMELLIA-128-CTR : camellia-128-ctr | |
1574 | camellia 10 : CAMELLIA-128-CMAC : camellia-128-cmac | |
f3dea9a5 BM |
1575 | |
1576 | camellia 21 : CAMELLIA-192-ECB : camellia-192-ecb | |
1577 | !Cname camellia-192-ofb128 | |
1578 | camellia 23 : CAMELLIA-192-OFB : camellia-192-ofb | |
1579 | !Cname camellia-192-cfb128 | |
1580 | camellia 24 : CAMELLIA-192-CFB : camellia-192-cfb | |
c79e1773 AP |
1581 | camellia 26 : CAMELLIA-192-GCM : camellia-192-gcm |
1582 | camellia 27 : CAMELLIA-192-CCM : camellia-192-ccm | |
1583 | camellia 29 : CAMELLIA-192-CTR : camellia-192-ctr | |
1584 | camellia 30 : CAMELLIA-192-CMAC : camellia-192-cmac | |
f3dea9a5 BM |
1585 | |
1586 | camellia 41 : CAMELLIA-256-ECB : camellia-256-ecb | |
1587 | !Cname camellia-256-ofb128 | |
1588 | camellia 43 : CAMELLIA-256-OFB : camellia-256-ofb | |
1589 | !Cname camellia-256-cfb128 | |
1590 | camellia 44 : CAMELLIA-256-CFB : camellia-256-cfb | |
c79e1773 AP |
1591 | camellia 46 : CAMELLIA-256-GCM : camellia-256-gcm |
1592 | camellia 47 : CAMELLIA-256-CCM : camellia-256-ccm | |
1593 | camellia 49 : CAMELLIA-256-CTR : camellia-256-ctr | |
1594 | camellia 50 : CAMELLIA-256-CMAC : camellia-256-cmac | |
f3dea9a5 BM |
1595 | |
1596 | # There are no OIDs for these modes... | |
1597 | ||
1598 | : CAMELLIA-128-CFB1 : camellia-128-cfb1 | |
1599 | : CAMELLIA-192-CFB1 : camellia-192-cfb1 | |
1600 | : CAMELLIA-256-CFB1 : camellia-256-cfb1 | |
1601 | : CAMELLIA-128-CFB8 : camellia-128-cfb8 | |
1602 | : CAMELLIA-192-CFB8 : camellia-192-cfb8 | |
1603 | : CAMELLIA-256-CFB8 : camellia-256-cfb8 | |
74633553 | 1604 | |
d42d0a4d P |
1605 | # Definitions for ARIA cipher |
1606 | ||
1607 | !Alias aria 1 2 410 200046 1 1 | |
1608 | aria 1 : ARIA-128-ECB : aria-128-ecb | |
1609 | aria 2 : ARIA-128-CBC : aria-128-cbc | |
1610 | !Cname aria-128-cfb128 | |
1611 | aria 3 : ARIA-128-CFB : aria-128-cfb | |
1612 | !Cname aria-128-ofb128 | |
1613 | aria 4 : ARIA-128-OFB : aria-128-ofb | |
1614 | aria 5 : ARIA-128-CTR : aria-128-ctr | |
1615 | ||
1616 | aria 6 : ARIA-192-ECB : aria-192-ecb | |
1617 | aria 7 : ARIA-192-CBC : aria-192-cbc | |
1618 | !Cname aria-192-cfb128 | |
1619 | aria 8 : ARIA-192-CFB : aria-192-cfb | |
1620 | !Cname aria-192-ofb128 | |
1621 | aria 9 : ARIA-192-OFB : aria-192-ofb | |
1622 | aria 10 : ARIA-192-CTR : aria-192-ctr | |
1623 | ||
1624 | aria 11 : ARIA-256-ECB : aria-256-ecb | |
1625 | aria 12 : ARIA-256-CBC : aria-256-cbc | |
1626 | !Cname aria-256-cfb128 | |
1627 | aria 13 : ARIA-256-CFB : aria-256-cfb | |
1628 | !Cname aria-256-ofb128 | |
1629 | aria 14 : ARIA-256-OFB : aria-256-ofb | |
1630 | aria 15 : ARIA-256-CTR : aria-256-ctr | |
1631 | ||
1632 | # There are no OIDs for these ARIA modes... | |
1633 | : ARIA-128-CFB1 : aria-128-cfb1 | |
1634 | : ARIA-192-CFB1 : aria-192-cfb1 | |
1635 | : ARIA-256-CFB1 : aria-256-cfb1 | |
1636 | : ARIA-128-CFB8 : aria-128-cfb8 | |
1637 | : ARIA-192-CFB8 : aria-192-cfb8 | |
1638 | : ARIA-256-CFB8 : aria-256-cfb8 | |
1639 | ||
bc326738 JS |
1640 | aria 37 : ARIA-128-CCM : aria-128-ccm |
1641 | aria 38 : ARIA-192-CCM : aria-192-ccm | |
1642 | aria 39 : ARIA-256-CCM : aria-256-ccm | |
1643 | aria 34 : ARIA-128-GCM : aria-128-gcm | |
1644 | aria 35 : ARIA-192-GCM : aria-192-gcm | |
1645 | aria 36 : ARIA-256-GCM : aria-256-gcm | |
1646 | ||
96afc1cf BM |
1647 | # Definitions for SEED cipher - ECB, CBC, OFB mode |
1648 | ||
1649 | member-body 410 200004 : KISA : kisa | |
1650 | kisa 1 3 : SEED-ECB : seed-ecb | |
1651 | kisa 1 4 : SEED-CBC : seed-cbc | |
1652 | !Cname seed-cfb128 | |
1653 | kisa 1 5 : SEED-CFB : seed-cfb | |
1654 | !Cname seed-ofb128 | |
1655 | kisa 1 6 : SEED-OFB : seed-ofb | |
1656 | ||
f19a5ff9 RT |
1657 | |
1658 | # Definitions for SM4 cipher | |
1659 | ||
f19a5ff9 RT |
1660 | sm-scheme 104 1 : SM4-ECB : sm4-ecb |
1661 | sm-scheme 104 2 : SM4-CBC : sm4-cbc | |
1662 | !Cname sm4-ofb128 | |
1663 | sm-scheme 104 3 : SM4-OFB : sm4-ofb | |
1664 | !Cname sm4-cfb128 | |
1665 | sm-scheme 104 4 : SM4-CFB : sm4-cfb | |
1666 | sm-scheme 104 5 : SM4-CFB1 : sm4-cfb1 | |
1667 | sm-scheme 104 6 : SM4-CFB8 : sm4-cfb8 | |
1668 | sm-scheme 104 7 : SM4-CTR : sm4-ctr | |
a596d38a TZ |
1669 | sm-scheme 104 8 : SM4-GCM : sm4-gcm |
1670 | sm-scheme 104 9 : SM4-CCM : sm4-ccm | |
de8f6a3e | 1671 | sm-scheme 104 10 : SM4-XTS : sm4-xts |
f19a5ff9 | 1672 | |
74633553 DSH |
1673 | # There is no OID that just denotes "HMAC" oddly enough... |
1674 | ||
1675 | : HMAC : hmac | |
c8ef656d DSH |
1676 | # Nor CMAC either |
1677 | : CMAC : cmac | |
c608171d AP |
1678 | |
1679 | # Synthetic composite ciphersuites | |
1680 | : RC4-HMAC-MD5 : rc4-hmac-md5 | |
1681 | : AES-128-CBC-HMAC-SHA1 : aes-128-cbc-hmac-sha1 | |
1682 | : AES-192-CBC-HMAC-SHA1 : aes-192-cbc-hmac-sha1 | |
1683 | : AES-256-CBC-HMAC-SHA1 : aes-256-cbc-hmac-sha1 | |
8a97a330 AP |
1684 | : AES-128-CBC-HMAC-SHA256 : aes-128-cbc-hmac-sha256 |
1685 | : AES-192-CBC-HMAC-SHA256 : aes-192-cbc-hmac-sha256 | |
1686 | : AES-256-CBC-HMAC-SHA256 : aes-256-cbc-hmac-sha256 | |
72bb2f64 AP |
1687 | : ChaCha20-Poly1305 : chacha20-poly1305 |
1688 | : ChaCha20 : chacha20 | |
afb14cda DSH |
1689 | |
1690 | ISO-US 10046 2 1 : dhpublicnumber : X9.42 DH | |
b36bab78 DSH |
1691 | |
1692 | # RFC 5639 curve OIDs (see http://www.ietf.org/rfc/rfc5639.txt) | |
1693 | # versionOne OBJECT IDENTIFIER ::= { | |
46f4e1be | 1694 | # iso(1) identified-organization(3) teletrust(36) algorithm(3) |
b36bab78 DSH |
1695 | # signature-algorithm(3) ecSign(2) ecStdCurvesAndGeneration(8) |
1696 | # ellipticCurve(1) 1 } | |
1697 | 1 3 36 3 3 2 8 1 1 1 : brainpoolP160r1 | |
1698 | 1 3 36 3 3 2 8 1 1 2 : brainpoolP160t1 | |
1699 | 1 3 36 3 3 2 8 1 1 3 : brainpoolP192r1 | |
1700 | 1 3 36 3 3 2 8 1 1 4 : brainpoolP192t1 | |
1701 | 1 3 36 3 3 2 8 1 1 5 : brainpoolP224r1 | |
1702 | 1 3 36 3 3 2 8 1 1 6 : brainpoolP224t1 | |
1703 | 1 3 36 3 3 2 8 1 1 7 : brainpoolP256r1 | |
c9ee6e36 MC |
1704 | # Alternate NID to represent the TLSv1.3 brainpoolP256r1 group |
1705 | : brainpoolP256r1tls13 | |
b36bab78 DSH |
1706 | 1 3 36 3 3 2 8 1 1 8 : brainpoolP256t1 |
1707 | 1 3 36 3 3 2 8 1 1 9 : brainpoolP320r1 | |
1708 | 1 3 36 3 3 2 8 1 1 10 : brainpoolP320t1 | |
1709 | 1 3 36 3 3 2 8 1 1 11 : brainpoolP384r1 | |
c9ee6e36 MC |
1710 | # Alternate NID to represent the TLSv1.3 brainpoolP384r1 group |
1711 | : brainpoolP384r1tls13 | |
b36bab78 DSH |
1712 | 1 3 36 3 3 2 8 1 1 12 : brainpoolP384t1 |
1713 | 1 3 36 3 3 2 8 1 1 13 : brainpoolP512r1 | |
c9ee6e36 MC |
1714 | # Alternate NID to represent the TLSv1.3 brainpoolP512r1 group |
1715 | : brainpoolP512r1tls13 | |
f19a5ff9 | 1716 | 1 3 36 3 3 2 8 1 1 14 : brainpoolP512t1 |
6af440ce DSH |
1717 | |
1718 | # ECDH schemes from RFC5753 | |
1719 | !Alias x9-63-scheme 1 3 133 16 840 63 0 | |
1720 | !Alias secg-scheme certicom-arc 1 | |
1721 | ||
1722 | x9-63-scheme 2 : dhSinglePass-stdDH-sha1kdf-scheme | |
1723 | secg-scheme 11 0 : dhSinglePass-stdDH-sha224kdf-scheme | |
1724 | secg-scheme 11 1 : dhSinglePass-stdDH-sha256kdf-scheme | |
1725 | secg-scheme 11 2 : dhSinglePass-stdDH-sha384kdf-scheme | |
1726 | secg-scheme 11 3 : dhSinglePass-stdDH-sha512kdf-scheme | |
1727 | ||
1728 | x9-63-scheme 3 : dhSinglePass-cofactorDH-sha1kdf-scheme | |
1729 | secg-scheme 14 0 : dhSinglePass-cofactorDH-sha224kdf-scheme | |
1730 | secg-scheme 14 1 : dhSinglePass-cofactorDH-sha256kdf-scheme | |
1731 | secg-scheme 14 2 : dhSinglePass-cofactorDH-sha384kdf-scheme | |
1732 | secg-scheme 14 3 : dhSinglePass-cofactorDH-sha512kdf-scheme | |
1733 | # NIDs for use with lookup tables. | |
1734 | : dh-std-kdf | |
1735 | : dh-cofactor-kdf | |
dcfe8df1 RS |
1736 | |
1737 | # RFC 6962 Extension OIDs (see http://www.ietf.org/rfc/rfc6962.txt) | |
1738 | 1 3 6 1 4 1 11129 2 4 2 : ct_precert_scts : CT Precertificate SCTs | |
1739 | 1 3 6 1 4 1 11129 2 4 3 : ct_precert_poison : CT Precertificate Poison | |
1740 | 1 3 6 1 4 1 11129 2 4 4 : ct_precert_signer : CT Precertificate Signer | |
1741 | 1 3 6 1 4 1 11129 2 4 5 : ct_cert_scts : CT Certificate SCTs | |
52f71f81 RS |
1742 | |
1743 | # CABForum EV SSL Certificate Guidelines | |
1744 | # (see https://cabforum.org/extended-validation/) | |
1745 | # OIDs for Subject Jurisdiction of Incorporation or Registration | |
f3afe15f DZ |
1746 | ms-corp 60 2 1 1 : jurisdictionL : jurisdictionLocalityName |
1747 | ms-corp 60 2 1 2 : jurisdictionST : jurisdictionStateOrProvinceName | |
1748 | ms-corp 60 2 1 3 : jurisdictionC : jurisdictionCountryName | |
96b96d6c DSH |
1749 | |
1750 | # SCRYPT algorithm | |
cefa762e JB |
1751 | !Cname id-scrypt |
1752 | 1 3 6 1 4 1 11591 4 11 : id-scrypt : scrypt | |
1eff3485 DSH |
1753 | |
1754 | # NID for TLS1 PRF | |
1755 | : TLS1-PRF : tls1-prf | |
d9f77726 | 1756 | |
aacfb134 AG |
1757 | # NID for HKDF |
1758 | : HKDF : hkdf | |
1759 | ||
8d76481b SS |
1760 | # NID for SSHKDF |
1761 | : SSHKDF : sshkdf | |
1762 | ||
9537fe57 SL |
1763 | # NID for SSKDF |
1764 | : SSKDF : sskdf | |
1aec7716 SL |
1765 | # NID for X942KDF |
1766 | : X942KDF : x942kdf | |
9537fe57 | 1767 | |
8bbeaaa4 SL |
1768 | # NID for X963-2001 KDF |
1769 | : X963KDF : x963kdf | |
1770 | ||
d9f77726 RS |
1771 | # RFC 4556 |
1772 | 1 3 6 1 5 2 3 : id-pkinit | |
1773 | id-pkinit 4 : pkInitClientAuth : PKINIT Client Auth | |
1774 | id-pkinit 5 : pkInitKDC : Signing KDC Response | |
d8489448 | 1775 | |
d0d0e8a7 | 1776 | # From RFC8410 |
4950f888 DSH |
1777 | 1 3 101 110 : X25519 |
1778 | 1 3 101 111 : X448 | |
9691a749 DSH |
1779 | 1 3 101 112 : ED25519 |
1780 | 1 3 101 113 : ED448 | |
1781 | ||
3ec13237 TS |
1782 | |
1783 | # NIDs for cipher key exchange | |
1784 | : KxRSA : kx-rsa | |
1785 | : KxECDHE : kx-ecdhe | |
1786 | : KxDHE : kx-dhe | |
1787 | : KxECDHE-PSK : kx-ecdhe-psk | |
1788 | : KxDHE-PSK : kx-dhe-psk | |
1789 | : KxRSA_PSK : kx-rsa-psk | |
1790 | : KxPSK : kx-psk | |
1791 | : KxSRP : kx-srp | |
1792 | : KxGOST : kx-gost | |
0e139a02 | 1793 | : KxGOST18 : kx-gost18 |
7114af30 | 1794 | : KxANY : kx-any |
3ec13237 TS |
1795 | |
1796 | # NIDs for cipher authentication | |
1797 | : AuthRSA : auth-rsa | |
1798 | : AuthECDSA : auth-ecdsa | |
1799 | : AuthPSK : auth-psk | |
1800 | : AuthDSS : auth-dss | |
1801 | : AuthGOST01 : auth-gost01 | |
1802 | : AuthGOST12 : auth-gost12 | |
1803 | : AuthSRP : auth-srp | |
1804 | : AuthNULL : auth-null | |
7114af30 | 1805 | : AuthANY : auth-any |
52ad5b60 TS |
1806 | # NID for Poly1305 |
1807 | : Poly1305 : poly1305 | |
3f5616d7 TS |
1808 | # NID for SipHash |
1809 | : SipHash : siphash | |
b6eae147 DSH |
1810 | # NIDs for RFC7919 DH parameters |
1811 | : ffdhe2048 | |
1812 | : ffdhe3072 | |
1813 | : ffdhe4096 | |
1814 | : ffdhe6144 | |
1815 | : ffdhe8192 | |
ca2bf555 SL |
1816 | # NIDs for RFC3526 DH parameters |
1817 | : modp_1536 | |
1818 | : modp_2048 | |
1819 | : modp_3072 | |
1820 | : modp_4096 | |
1821 | : modp_6144 | |
1822 | : modp_8192 | |
e45b4dd2 | 1823 | |
1824 | # OIDs for DSTU-4145/DSTU-7564 (http://zakon2.rada.gov.ua/laws/show/z0423-17) | |
1825 | ||
1826 | # DSTU OIDs | |
1827 | member-body 804 : ISO-UA | |
1828 | ISO-UA 2 1 1 1 : ua-pki | |
1829 | ua-pki 1 1 1 : dstu28147 : DSTU Gost 28147-2009 | |
1830 | dstu28147 2 : dstu28147-ofb : DSTU Gost 28147-2009 OFB mode | |
1831 | dstu28147 3 : dstu28147-cfb : DSTU Gost 28147-2009 CFB mode | |
1832 | dstu28147 5 : dstu28147-wrap : DSTU Gost 28147-2009 key wrap | |
1833 | ||
1834 | ua-pki 1 1 2 : hmacWithDstu34311 : HMAC DSTU Gost 34311-95 | |
1835 | ua-pki 1 2 1 : dstu34311 : DSTU Gost 34311-95 | |
1836 | ||
1837 | ua-pki 1 3 1 1 : dstu4145le : DSTU 4145-2002 little endian | |
1838 | dstu4145le 1 1 : dstu4145be : DSTU 4145-2002 big endian | |
1839 | ||
1840 | # 1.2.804. 2.1.1.1 1.3.1.1 .2.6 | |
1841 | # UA ua-pki 4145 le | |
1842 | # DSTU named curves | |
1843 | dstu4145le 2 0 : uacurve0 : DSTU curve 0 | |
1844 | dstu4145le 2 1 : uacurve1 : DSTU curve 1 | |
1845 | dstu4145le 2 2 : uacurve2 : DSTU curve 2 | |
1846 | dstu4145le 2 3 : uacurve3 : DSTU curve 3 | |
1847 | dstu4145le 2 4 : uacurve4 : DSTU curve 4 | |
1848 | dstu4145le 2 5 : uacurve5 : DSTU curve 5 | |
1849 | dstu4145le 2 6 : uacurve6 : DSTU curve 6 | |
1850 | dstu4145le 2 7 : uacurve7 : DSTU curve 7 | |
1851 | dstu4145le 2 8 : uacurve8 : DSTU curve 8 | |
1852 | dstu4145le 2 9 : uacurve9 : DSTU curve 9 | |
b1ceb439 TS |
1853 | # NID for AES-SIV |
1854 | : AES-128-SIV : aes-128-siv | |
1855 | : AES-192-SIV : aes-192-siv | |
1856 | : AES-256-SIV : aes-256-siv | |
e869c867 GW |
1857 | |
1858 | ||
1859 | !Cname oracle | |
1860 | joint-iso-itu-t 16 840 1 113894 : oracle-organization : Oracle organization | |
1861 | # Jdk trustedKeyUsage attribute | |
1862 | oracle 746875 1 1 : oracle-jdk-trustedkeyusage : Trusted key usage (Oracle) | |
12e96a23 | 1863 | |
caf9317d | 1864 | # NID for compression |
12e96a23 | 1865 | : brotli : Brotli compression |
caf9317d | 1866 | : zstd : Zstandard compression |