]>
Commit | Line | Data |
---|---|---|
f9d183c2 RL |
1 | # CCITT was renamed to ITU-T quite some time ago |
2 | 0 : ITU-T : itu-t | |
3 | !Alias ccitt itu-t | |
64b48877 | 4 | |
c2bbf9cf | 5 | 1 : ISO : iso |
622ec449 | 6 | |
f9d183c2 RL |
7 | 2 : JOINT-ISO-ITU-T : joint-iso-itu-t |
8 | !Alias joint-iso-ccitt joint-iso-itu-t | |
4b125068 | 9 | |
c2bbf9cf | 10 | iso 2 : member-body : ISO Member Body |
622ec449 | 11 | |
36c19463 BM |
12 | iso 3 : identified-organization |
13 | ||
afc580b9 P |
14 | # GMAC OID |
15 | iso 0 9797 3 4 : GMAC : gmac | |
6e624a64 | 16 | |
86140095 LJ |
17 | # HMAC OIDs |
18 | identified-organization 6 1 5 5 8 1 1 : HMAC-MD5 : hmac-md5 | |
19 | identified-organization 6 1 5 5 8 1 2 : HMAC-SHA1 : hmac-sha1 | |
20 | ||
0c9d6818 F |
21 | # "1.3.36.8.3.3" |
22 | identified-organization 36 8 3 3 : x509ExtAdmission : Professional Information or basis for Admission | |
23 | ||
36c19463 BM |
24 | identified-organization 132 : certicom-arc |
25 | ||
5cd42251 P |
26 | identified-organization 111 : ieee |
27 | ieee 2 1619 : ieee-siswg : IEEE Security in Storage Working Group | |
28 | ||
f9d183c2 RL |
29 | joint-iso-itu-t 23 : international-organizations : International Organizations |
30 | ||
31 | international-organizations 43 : wap | |
cab6de03 | 32 | wap 1 : wap-wsg |
1d284535 | 33 | |
f9d183c2 | 34 | joint-iso-itu-t 5 1 5 : selected-attribute-types : Selected Attribute Types |
4b125068 RL |
35 | |
36 | selected-attribute-types 55 : clearance | |
37 | ||
c2bbf9cf RL |
38 | member-body 840 : ISO-US : ISO US Member Body |
39 | ISO-US 10040 : X9-57 : X9.57 | |
40 | X9-57 4 : X9cm : X9.57 CM ? | |
41 | ||
3d328a44 JL |
42 | member-body 156 : ISO-CN : ISO CN Member Body |
43 | ISO-CN 10197 : oscca | |
44 | oscca 1 : sm-scheme | |
45 | ||
c2bbf9cf RL |
46 | !Cname dsa |
47 | X9cm 1 : DSA : dsaEncryption | |
48 | X9cm 3 : DSA-SHA1 : dsaWithSHA1 | |
49 | ||
14f7ee49 BM |
50 | |
51 | ISO-US 10045 : ansi-X9-62 : ANSI X9.62 | |
52 | !module X9-62 | |
53 | !Alias id-fieldType ansi-X9-62 1 | |
54 | X9-62_id-fieldType 1 : prime-field | |
55 | X9-62_id-fieldType 2 : characteristic-two-field | |
2d9b1b3f BM |
56 | X9-62_characteristic-two-field 3 : id-characteristic-two-basis |
57 | X9-62_id-characteristic-two-basis 1 : onBasis | |
58 | X9-62_id-characteristic-two-basis 2 : tpBasis | |
59 | X9-62_id-characteristic-two-basis 3 : ppBasis | |
14f7ee49 BM |
60 | !Alias id-publicKeyType ansi-X9-62 2 |
61 | X9-62_id-publicKeyType 1 : id-ecPublicKey | |
62 | !Alias ellipticCurve ansi-X9-62 3 | |
63 | !Alias c-TwoCurve X9-62_ellipticCurve 0 | |
2d9b1b3f BM |
64 | X9-62_c-TwoCurve 1 : c2pnb163v1 |
65 | X9-62_c-TwoCurve 2 : c2pnb163v2 | |
66 | X9-62_c-TwoCurve 3 : c2pnb163v3 | |
67 | X9-62_c-TwoCurve 4 : c2pnb176v1 | |
68 | X9-62_c-TwoCurve 5 : c2tnb191v1 | |
69 | X9-62_c-TwoCurve 6 : c2tnb191v2 | |
70 | X9-62_c-TwoCurve 7 : c2tnb191v3 | |
71 | X9-62_c-TwoCurve 8 : c2onb191v4 | |
72 | X9-62_c-TwoCurve 9 : c2onb191v5 | |
73 | X9-62_c-TwoCurve 10 : c2pnb208w1 | |
74 | X9-62_c-TwoCurve 11 : c2tnb239v1 | |
75 | X9-62_c-TwoCurve 12 : c2tnb239v2 | |
76 | X9-62_c-TwoCurve 13 : c2tnb239v3 | |
77 | X9-62_c-TwoCurve 14 : c2onb239v4 | |
78 | X9-62_c-TwoCurve 15 : c2onb239v5 | |
79 | X9-62_c-TwoCurve 16 : c2pnb272w1 | |
80 | X9-62_c-TwoCurve 17 : c2pnb304w1 | |
81 | X9-62_c-TwoCurve 18 : c2tnb359v1 | |
82 | X9-62_c-TwoCurve 19 : c2pnb368w1 | |
83 | X9-62_c-TwoCurve 20 : c2tnb431r1 | |
14f7ee49 BM |
84 | !Alias primeCurve X9-62_ellipticCurve 1 |
85 | X9-62_primeCurve 1 : prime192v1 | |
86 | X9-62_primeCurve 2 : prime192v2 | |
87 | X9-62_primeCurve 3 : prime192v3 | |
88 | X9-62_primeCurve 4 : prime239v1 | |
89 | X9-62_primeCurve 5 : prime239v2 | |
90 | X9-62_primeCurve 6 : prime239v3 | |
91 | X9-62_primeCurve 7 : prime256v1 | |
92 | !Alias id-ecSigType ansi-X9-62 4 | |
93 | !global | |
94 | X9-62_id-ecSigType 1 : ecdsa-with-SHA1 | |
06e2dd03 NL |
95 | X9-62_id-ecSigType 2 : ecdsa-with-Recommended |
96 | X9-62_id-ecSigType 3 : ecdsa-with-Specified | |
97 | ecdsa-with-Specified 1 : ecdsa-with-SHA224 | |
98 | ecdsa-with-Specified 2 : ecdsa-with-SHA256 | |
99 | ecdsa-with-Specified 3 : ecdsa-with-SHA384 | |
100 | ecdsa-with-Specified 4 : ecdsa-with-SHA512 | |
14f7ee49 | 101 | |
1d284535 BM |
102 | # SECG curve OIDs from "SEC 2: Recommended Elliptic Curve Domain Parameters" |
103 | # (http://www.secg.org/) | |
36c19463 | 104 | !Alias secg_ellipticCurve certicom-arc 0 |
1d284535 | 105 | # SECG prime curves OIDs |
36c19463 BM |
106 | secg-ellipticCurve 6 : secp112r1 |
107 | secg-ellipticCurve 7 : secp112r2 | |
108 | secg-ellipticCurve 28 : secp128r1 | |
109 | secg-ellipticCurve 29 : secp128r2 | |
110 | secg-ellipticCurve 9 : secp160k1 | |
111 | secg-ellipticCurve 8 : secp160r1 | |
112 | secg-ellipticCurve 30 : secp160r2 | |
113 | secg-ellipticCurve 31 : secp192k1 | |
d745af4b BM |
114 | # NOTE: the curve secp192r1 is the same as prime192v1 defined above |
115 | # and is therefore omitted | |
36c19463 BM |
116 | secg-ellipticCurve 32 : secp224k1 |
117 | secg-ellipticCurve 33 : secp224r1 | |
118 | secg-ellipticCurve 10 : secp256k1 | |
d745af4b BM |
119 | # NOTE: the curve secp256r1 is the same as prime256v1 defined above |
120 | # and is therefore omitted | |
36c19463 BM |
121 | secg-ellipticCurve 34 : secp384r1 |
122 | secg-ellipticCurve 35 : secp521r1 | |
1d284535 | 123 | # SECG characteristic two curves OIDs |
36c19463 BM |
124 | secg-ellipticCurve 4 : sect113r1 |
125 | secg-ellipticCurve 5 : sect113r2 | |
126 | secg-ellipticCurve 22 : sect131r1 | |
127 | secg-ellipticCurve 23 : sect131r2 | |
128 | secg-ellipticCurve 1 : sect163k1 | |
129 | secg-ellipticCurve 2 : sect163r1 | |
130 | secg-ellipticCurve 15 : sect163r2 | |
131 | secg-ellipticCurve 24 : sect193r1 | |
132 | secg-ellipticCurve 25 : sect193r2 | |
133 | secg-ellipticCurve 26 : sect233k1 | |
134 | secg-ellipticCurve 27 : sect233r1 | |
135 | secg-ellipticCurve 3 : sect239k1 | |
136 | secg-ellipticCurve 16 : sect283k1 | |
137 | secg-ellipticCurve 17 : sect283r1 | |
138 | secg-ellipticCurve 36 : sect409k1 | |
139 | secg-ellipticCurve 37 : sect409r1 | |
140 | secg-ellipticCurve 38 : sect571k1 | |
141 | secg-ellipticCurve 39 : sect571r1 | |
14f7ee49 | 142 | |
1d284535 BM |
143 | # WAP/TLS curve OIDs (http://www.wapforum.org/) |
144 | !Alias wap-wsg-idm-ecid wap-wsg 4 | |
145 | wap-wsg-idm-ecid 1 : wap-wsg-idm-ecid-wtls1 | |
16dc1cfb BM |
146 | wap-wsg-idm-ecid 3 : wap-wsg-idm-ecid-wtls3 |
147 | wap-wsg-idm-ecid 4 : wap-wsg-idm-ecid-wtls4 | |
148 | wap-wsg-idm-ecid 5 : wap-wsg-idm-ecid-wtls5 | |
1d284535 | 149 | wap-wsg-idm-ecid 6 : wap-wsg-idm-ecid-wtls6 |
16dc1cfb | 150 | wap-wsg-idm-ecid 7 : wap-wsg-idm-ecid-wtls7 |
1d284535 BM |
151 | wap-wsg-idm-ecid 8 : wap-wsg-idm-ecid-wtls8 |
152 | wap-wsg-idm-ecid 9 : wap-wsg-idm-ecid-wtls9 | |
16dc1cfb BM |
153 | wap-wsg-idm-ecid 10 : wap-wsg-idm-ecid-wtls10 |
154 | wap-wsg-idm-ecid 11 : wap-wsg-idm-ecid-wtls11 | |
155 | wap-wsg-idm-ecid 12 : wap-wsg-idm-ecid-wtls12 | |
1d284535 BM |
156 | |
157 | ||
c2bbf9cf RL |
158 | ISO-US 113533 7 66 10 : CAST5-CBC : cast5-cbc |
159 | : CAST5-ECB : cast5-ecb | |
160 | !Cname cast5-cfb64 | |
161 | : CAST5-CFB : cast5-cfb | |
162 | !Cname cast5-ofb64 | |
163 | : CAST5-OFB : cast5-ofb | |
164 | !Cname pbeWithMD5AndCast5-CBC | |
165 | ISO-US 113533 7 66 12 : : pbeWithMD5AndCast5CBC | |
166 | ||
86140095 LJ |
167 | # Macs for CMP and CRMF |
168 | ISO-US 113533 7 66 13 : id-PasswordBasedMAC : password based MAC | |
169 | ISO-US 113533 7 66 30 : id-DHBasedMac : Diffie-Hellman based MAC | |
170 | ||
c2bbf9cf RL |
171 | ISO-US 113549 : rsadsi : RSA Data Security, Inc. |
172 | ||
173 | rsadsi 1 : pkcs : RSA Data Security, Inc. PKCS | |
174 | ||
175 | pkcs 1 : pkcs1 | |
176 | pkcs1 1 : : rsaEncryption | |
177 | pkcs1 2 : RSA-MD2 : md2WithRSAEncryption | |
dd5e7746 | 178 | pkcs1 3 : RSA-MD4 : md4WithRSAEncryption |
c2bbf9cf RL |
179 | pkcs1 4 : RSA-MD5 : md5WithRSAEncryption |
180 | pkcs1 5 : RSA-SHA1 : sha1WithRSAEncryption | |
6bca8e38 | 181 | # According to PKCS #1 version 2.1 |
b3339050 | 182 | pkcs1 7 : RSAES-OAEP : rsaesOaep |
ff04bbe3 | 183 | pkcs1 8 : MGF1 : mgf1 |
e423c360 | 184 | pkcs1 9 : PSPECIFIED : pSpecified |
ff04bbe3 DSH |
185 | pkcs1 10 : RSASSA-PSS : rsassaPss |
186 | ||
6bca8e38 AP |
187 | pkcs1 11 : RSA-SHA256 : sha256WithRSAEncryption |
188 | pkcs1 12 : RSA-SHA384 : sha384WithRSAEncryption | |
189 | pkcs1 13 : RSA-SHA512 : sha512WithRSAEncryption | |
190 | pkcs1 14 : RSA-SHA224 : sha224WithRSAEncryption | |
4bed94f0 P |
191 | pkcs1 15 : RSA-SHA512/224 : sha512-224WithRSAEncryption |
192 | pkcs1 16 : RSA-SHA512/256 : sha512-256WithRSAEncryption | |
c2bbf9cf RL |
193 | |
194 | pkcs 3 : pkcs3 | |
195 | pkcs3 1 : : dhKeyAgreement | |
196 | ||
197 | pkcs 5 : pkcs5 | |
198 | pkcs5 1 : PBE-MD2-DES : pbeWithMD2AndDES-CBC | |
199 | pkcs5 3 : PBE-MD5-DES : pbeWithMD5AndDES-CBC | |
200 | pkcs5 4 : PBE-MD2-RC2-64 : pbeWithMD2AndRC2-CBC | |
201 | pkcs5 6 : PBE-MD5-RC2-64 : pbeWithMD5AndRC2-CBC | |
202 | pkcs5 10 : PBE-SHA1-DES : pbeWithSHA1AndDES-CBC | |
203 | pkcs5 11 : PBE-SHA1-RC2-64 : pbeWithSHA1AndRC2-CBC | |
204 | !Cname id_pbkdf2 | |
205 | pkcs5 12 : : PBKDF2 | |
206 | !Cname pbes2 | |
207 | pkcs5 13 : : PBES2 | |
208 | !Cname pbmac1 | |
209 | pkcs5 14 : : PBMAC1 | |
210 | ||
211 | pkcs 7 : pkcs7 | |
212 | pkcs7 1 : : pkcs7-data | |
213 | !Cname pkcs7-signed | |
214 | pkcs7 2 : : pkcs7-signedData | |
215 | !Cname pkcs7-enveloped | |
216 | pkcs7 3 : : pkcs7-envelopedData | |
217 | !Cname pkcs7-signedAndEnveloped | |
218 | pkcs7 4 : : pkcs7-signedAndEnvelopedData | |
219 | !Cname pkcs7-digest | |
220 | pkcs7 5 : : pkcs7-digestData | |
221 | !Cname pkcs7-encrypted | |
222 | pkcs7 6 : : pkcs7-encryptedData | |
223 | ||
224 | pkcs 9 : pkcs9 | |
225 | !module pkcs9 | |
30911232 | 226 | pkcs9 1 : : emailAddress |
c2bbf9cf RL |
227 | pkcs9 2 : : unstructuredName |
228 | pkcs9 3 : : contentType | |
229 | pkcs9 4 : : messageDigest | |
230 | pkcs9 5 : : signingTime | |
231 | pkcs9 6 : : countersignature | |
232 | pkcs9 7 : : challengePassword | |
233 | pkcs9 8 : : unstructuredAddress | |
234 | !Cname extCertAttributes | |
235 | pkcs9 9 : : extendedCertificateAttributes | |
236 | !global | |
237 | ||
238 | !Cname ext-req | |
239 | pkcs9 14 : extReq : Extension Request | |
240 | ||
241 | !Cname SMIMECapabilities | |
242 | pkcs9 15 : SMIME-CAPS : S/MIME Capabilities | |
243 | ||
244 | # S/MIME | |
245 | !Cname SMIME | |
246 | pkcs9 16 : SMIME : S/MIME | |
247 | SMIME 0 : id-smime-mod | |
248 | SMIME 1 : id-smime-ct | |
249 | SMIME 2 : id-smime-aa | |
250 | SMIME 3 : id-smime-alg | |
251 | SMIME 4 : id-smime-cd | |
252 | SMIME 5 : id-smime-spq | |
253 | SMIME 6 : id-smime-cti | |
254 | ||
255 | # S/MIME Modules | |
256 | id-smime-mod 1 : id-smime-mod-cms | |
257 | id-smime-mod 2 : id-smime-mod-ess | |
258 | id-smime-mod 3 : id-smime-mod-oid | |
259 | id-smime-mod 4 : id-smime-mod-msg-v3 | |
260 | id-smime-mod 5 : id-smime-mod-ets-eSignature-88 | |
261 | id-smime-mod 6 : id-smime-mod-ets-eSignature-97 | |
262 | id-smime-mod 7 : id-smime-mod-ets-eSigPolicy-88 | |
263 | id-smime-mod 8 : id-smime-mod-ets-eSigPolicy-97 | |
264 | ||
265 | # S/MIME Content Types | |
266 | id-smime-ct 1 : id-smime-ct-receipt | |
267 | id-smime-ct 2 : id-smime-ct-authData | |
268 | id-smime-ct 3 : id-smime-ct-publishCert | |
269 | id-smime-ct 4 : id-smime-ct-TSTInfo | |
270 | id-smime-ct 5 : id-smime-ct-TDTInfo | |
271 | id-smime-ct 6 : id-smime-ct-contentInfo | |
272 | id-smime-ct 7 : id-smime-ct-DVCSRequestData | |
273 | id-smime-ct 8 : id-smime-ct-DVCSResponseData | |
400ca0e4 | 274 | id-smime-ct 9 : id-smime-ct-compressedData |
505aee29 WL |
275 | id-smime-ct 19 : id-smime-ct-contentCollection |
276 | id-smime-ct 23 : id-smime-ct-authEnvelopedData | |
d3372c2f JS |
277 | id-smime-ct 24 : id-ct-routeOriginAuthz |
278 | id-smime-ct 26 : id-ct-rpkiManifest | |
054307e7 | 279 | id-smime-ct 27 : id-ct-asciiTextWithCRLF |
505aee29 | 280 | id-smime-ct 28 : id-ct-xml |
d3372c2f JS |
281 | id-smime-ct 35 : id-ct-rpkiGhostbusters |
282 | id-smime-ct 36 : id-ct-resourceTaggedAttest | |
f2d78536 | 283 | id-smime-ct 47 : id-ct-geofeedCSVwithCRLF |
7303c582 | 284 | id-smime-ct 48 : id-ct-signedChecklist |
b0c1214e | 285 | id-smime-ct 49 : id-ct-ASPA |
fcae2ae4 | 286 | id-smime-ct 50 : id-ct-signedTAL |
c2bbf9cf RL |
287 | |
288 | # S/MIME Attributes | |
289 | id-smime-aa 1 : id-smime-aa-receiptRequest | |
290 | id-smime-aa 2 : id-smime-aa-securityLabel | |
291 | id-smime-aa 3 : id-smime-aa-mlExpandHistory | |
292 | id-smime-aa 4 : id-smime-aa-contentHint | |
293 | id-smime-aa 5 : id-smime-aa-msgSigDigest | |
294 | # obsolete | |
295 | id-smime-aa 6 : id-smime-aa-encapContentType | |
296 | id-smime-aa 7 : id-smime-aa-contentIdentifier | |
297 | # obsolete | |
298 | id-smime-aa 8 : id-smime-aa-macValue | |
299 | id-smime-aa 9 : id-smime-aa-equivalentLabels | |
300 | id-smime-aa 10 : id-smime-aa-contentReference | |
301 | id-smime-aa 11 : id-smime-aa-encrypKeyPref | |
302 | id-smime-aa 12 : id-smime-aa-signingCertificate | |
303 | id-smime-aa 13 : id-smime-aa-smimeEncryptCerts | |
304 | id-smime-aa 14 : id-smime-aa-timeStampToken | |
305 | id-smime-aa 15 : id-smime-aa-ets-sigPolicyId | |
306 | id-smime-aa 16 : id-smime-aa-ets-commitmentType | |
307 | id-smime-aa 17 : id-smime-aa-ets-signerLocation | |
308 | id-smime-aa 18 : id-smime-aa-ets-signerAttr | |
309 | id-smime-aa 19 : id-smime-aa-ets-otherSigCert | |
310 | id-smime-aa 20 : id-smime-aa-ets-contentTimestamp | |
311 | id-smime-aa 21 : id-smime-aa-ets-CertificateRefs | |
312 | id-smime-aa 22 : id-smime-aa-ets-RevocationRefs | |
313 | id-smime-aa 23 : id-smime-aa-ets-certValues | |
314 | id-smime-aa 24 : id-smime-aa-ets-revocationValues | |
315 | id-smime-aa 25 : id-smime-aa-ets-escTimeStamp | |
316 | id-smime-aa 26 : id-smime-aa-ets-certCRLTimestamp | |
317 | id-smime-aa 27 : id-smime-aa-ets-archiveTimeStamp | |
318 | id-smime-aa 28 : id-smime-aa-signatureType | |
319 | id-smime-aa 29 : id-smime-aa-dvcs-dvc | |
5f7d4e91 LJ |
320 | id-smime-aa 44 : id-aa-ets-attrCertificateRefs |
321 | id-smime-aa 45 : id-aa-ets-attrRevocationRefs | |
e92947d8 | 322 | id-smime-aa 47 : id-smime-aa-signingCertificateV2 |
5f7d4e91 | 323 | id-smime-aa 48 : id-aa-ets-archiveTimestampV2 |
c2bbf9cf RL |
324 | |
325 | # S/MIME Algorithm Identifiers | |
326 | # obsolete | |
327 | id-smime-alg 1 : id-smime-alg-ESDHwith3DES | |
328 | # obsolete | |
329 | id-smime-alg 2 : id-smime-alg-ESDHwithRC2 | |
330 | # obsolete | |
331 | id-smime-alg 3 : id-smime-alg-3DESwrap | |
332 | # obsolete | |
333 | id-smime-alg 4 : id-smime-alg-RC2wrap | |
334 | id-smime-alg 5 : id-smime-alg-ESDH | |
335 | id-smime-alg 6 : id-smime-alg-CMS3DESwrap | |
336 | id-smime-alg 7 : id-smime-alg-CMSRC2wrap | |
f2334630 | 337 | id-smime-alg 9 : id-alg-PWRI-KEK |
c2bbf9cf RL |
338 | |
339 | # S/MIME Certificate Distribution | |
340 | id-smime-cd 1 : id-smime-cd-ldap | |
341 | ||
342 | # S/MIME Signature Policy Qualifier | |
343 | id-smime-spq 1 : id-smime-spq-ets-sqt-uri | |
344 | id-smime-spq 2 : id-smime-spq-ets-sqt-unotice | |
345 | ||
346 | # S/MIME Commitment Type Identifier | |
347 | id-smime-cti 1 : id-smime-cti-ets-proofOfOrigin | |
348 | id-smime-cti 2 : id-smime-cti-ets-proofOfReceipt | |
349 | id-smime-cti 3 : id-smime-cti-ets-proofOfDelivery | |
350 | id-smime-cti 4 : id-smime-cti-ets-proofOfSender | |
351 | id-smime-cti 5 : id-smime-cti-ets-proofOfApproval | |
352 | id-smime-cti 6 : id-smime-cti-ets-proofOfCreation | |
353 | ||
354 | pkcs9 20 : : friendlyName | |
355 | pkcs9 21 : : localKeyID | |
f2a253e0 DSH |
356 | !Cname ms-csp-name |
357 | 1 3 6 1 4 1 311 17 1 : CSPName : Microsoft CSP Name | |
8528128b | 358 | 1 3 6 1 4 1 311 17 2 : LocalKeySet : Microsoft Local Key set |
c2bbf9cf RL |
359 | !Alias certTypes pkcs9 22 |
360 | certTypes 1 : : x509Certificate | |
361 | certTypes 2 : : sdsiCertificate | |
362 | !Alias crlTypes pkcs9 23 | |
363 | crlTypes 1 : : x509Crl | |
364 | ||
5f7d4e91 LJ |
365 | pkcs9 52 : id-aa-CMSAlgorithmProtection |
366 | ||
c2bbf9cf RL |
367 | !Alias pkcs12 pkcs 12 |
368 | !Alias pkcs12-pbeids pkcs12 1 | |
369 | ||
370 | !Cname pbe-WithSHA1And128BitRC4 | |
371 | pkcs12-pbeids 1 : PBE-SHA1-RC4-128 : pbeWithSHA1And128BitRC4 | |
372 | !Cname pbe-WithSHA1And40BitRC4 | |
373 | pkcs12-pbeids 2 : PBE-SHA1-RC4-40 : pbeWithSHA1And40BitRC4 | |
374 | !Cname pbe-WithSHA1And3_Key_TripleDES-CBC | |
375 | pkcs12-pbeids 3 : PBE-SHA1-3DES : pbeWithSHA1And3-KeyTripleDES-CBC | |
376 | !Cname pbe-WithSHA1And2_Key_TripleDES-CBC | |
377 | pkcs12-pbeids 4 : PBE-SHA1-2DES : pbeWithSHA1And2-KeyTripleDES-CBC | |
378 | !Cname pbe-WithSHA1And128BitRC2-CBC | |
379 | pkcs12-pbeids 5 : PBE-SHA1-RC2-128 : pbeWithSHA1And128BitRC2-CBC | |
380 | !Cname pbe-WithSHA1And40BitRC2-CBC | |
381 | pkcs12-pbeids 6 : PBE-SHA1-RC2-40 : pbeWithSHA1And40BitRC2-CBC | |
382 | ||
383 | !Alias pkcs12-Version1 pkcs12 10 | |
384 | !Alias pkcs12-BagIds pkcs12-Version1 1 | |
385 | pkcs12-BagIds 1 : : keyBag | |
386 | pkcs12-BagIds 2 : : pkcs8ShroudedKeyBag | |
387 | pkcs12-BagIds 3 : : certBag | |
388 | pkcs12-BagIds 4 : : crlBag | |
389 | pkcs12-BagIds 5 : : secretBag | |
390 | pkcs12-BagIds 6 : : safeContentsBag | |
391 | ||
392 | rsadsi 2 2 : MD2 : md2 | |
393 | rsadsi 2 4 : MD4 : md4 | |
394 | rsadsi 2 5 : MD5 : md5 | |
395 | : MD5-SHA1 : md5-sha1 | |
856640b5 | 396 | rsadsi 2 6 : : hmacWithMD5 |
c2bbf9cf | 397 | rsadsi 2 7 : : hmacWithSHA1 |
1631d5f9 | 398 | |
3d328a44 JL |
399 | sm-scheme 301 : SM2 : sm2 |
400 | ||
401 | sm-scheme 401 : SM3 : sm3 | |
402 | sm-scheme 504 : RSA-SM3 : sm3WithRSAEncryption | |
a0c3e4fa | 403 | |
8267becb | 404 | sm-scheme 501 : SM2-SM3 : SM2-with-SM3 |
405 | ||
48963ff6 K |
406 | # From GM/T 0091-2020 |
407 | sm3 3 1 : : hmacWithSM3 | |
408 | ||
1631d5f9 DSH |
409 | # From RFC4231 |
410 | rsadsi 2 8 : : hmacWithSHA224 | |
411 | rsadsi 2 9 : : hmacWithSHA256 | |
412 | rsadsi 2 10 : : hmacWithSHA384 | |
413 | rsadsi 2 11 : : hmacWithSHA512 | |
414 | ||
f52292be P |
415 | # From RFC8018 |
416 | rsadsi 2 12 : : hmacWithSHA512-224 | |
417 | rsadsi 2 13 : : hmacWithSHA512-256 | |
418 | ||
c2bbf9cf RL |
419 | rsadsi 3 2 : RC2-CBC : rc2-cbc |
420 | : RC2-ECB : rc2-ecb | |
421 | !Cname rc2-cfb64 | |
422 | : RC2-CFB : rc2-cfb | |
423 | !Cname rc2-ofb64 | |
424 | : RC2-OFB : rc2-ofb | |
425 | : RC2-40-CBC : rc2-40-cbc | |
426 | : RC2-64-CBC : rc2-64-cbc | |
427 | rsadsi 3 4 : RC4 : rc4 | |
428 | : RC4-40 : rc4-40 | |
429 | rsadsi 3 7 : DES-EDE3-CBC : des-ede3-cbc | |
430 | rsadsi 3 8 : RC5-CBC : rc5-cbc | |
431 | : RC5-ECB : rc5-ecb | |
432 | !Cname rc5-cfb64 | |
433 | : RC5-CFB : rc5-cfb | |
434 | !Cname rc5-ofb64 | |
435 | : RC5-OFB : rc5-ofb | |
436 | ||
437 | !Cname ms-ext-req | |
438 | 1 3 6 1 4 1 311 2 1 14 : msExtReq : Microsoft Extension Request | |
439 | !Cname ms-code-ind | |
440 | 1 3 6 1 4 1 311 2 1 21 : msCodeInd : Microsoft Individual Code Signing | |
441 | !Cname ms-code-com | |
442 | 1 3 6 1 4 1 311 2 1 22 : msCodeCom : Microsoft Commercial Code Signing | |
443 | !Cname ms-ctl-sign | |
444 | 1 3 6 1 4 1 311 10 3 1 : msCTLSign : Microsoft Trust List Signing | |
445 | !Cname ms-sgc | |
446 | 1 3 6 1 4 1 311 10 3 3 : msSGC : Microsoft Server Gated Crypto | |
447 | !Cname ms-efs | |
448 | 1 3 6 1 4 1 311 10 3 4 : msEFS : Microsoft Encrypted File System | |
ce4f169f | 449 | !Cname ms-smartcard-login |
648b53b8 | 450 | 1 3 6 1 4 1 311 20 2 2 : msSmartcardLogin : Microsoft Smartcard Login |
ce4f169f | 451 | !Cname ms-upn |
648b53b8 | 452 | 1 3 6 1 4 1 311 20 2 3 : msUPN : Microsoft User Principal Name |
c2bbf9cf RL |
453 | |
454 | 1 3 6 1 4 1 188 7 1 1 2 : IDEA-CBC : idea-cbc | |
455 | : IDEA-ECB : idea-ecb | |
456 | !Cname idea-cfb64 | |
457 | : IDEA-CFB : idea-cfb | |
458 | !Cname idea-ofb64 | |
459 | : IDEA-OFB : idea-ofb | |
460 | ||
461 | 1 3 6 1 4 1 3029 1 2 : BF-CBC : bf-cbc | |
462 | : BF-ECB : bf-ecb | |
463 | !Cname bf-cfb64 | |
464 | : BF-CFB : bf-cfb | |
465 | !Cname bf-ofb64 | |
466 | : BF-OFB : bf-ofb | |
467 | ||
468 | !Cname id-pkix | |
469 | 1 3 6 1 5 5 7 : PKIX | |
470 | ||
471 | # PKIX Arcs | |
472 | id-pkix 0 : id-pkix-mod | |
473 | id-pkix 1 : id-pe | |
474 | id-pkix 2 : id-qt | |
475 | id-pkix 3 : id-kp | |
476 | id-pkix 4 : id-it | |
477 | id-pkix 5 : id-pkip | |
478 | id-pkix 6 : id-alg | |
479 | id-pkix 7 : id-cmc | |
480 | id-pkix 8 : id-on | |
481 | id-pkix 9 : id-pda | |
482 | id-pkix 10 : id-aca | |
483 | id-pkix 11 : id-qcs | |
d3372c2f | 484 | id-pkix 14 : id-cp |
c2bbf9cf | 485 | id-pkix 12 : id-cct |
6951c23a | 486 | id-pkix 21 : id-ppl |
c2bbf9cf RL |
487 | id-pkix 48 : id-ad |
488 | ||
489 | # PKIX Modules | |
490 | id-pkix-mod 1 : id-pkix1-explicit-88 | |
491 | id-pkix-mod 2 : id-pkix1-implicit-88 | |
492 | id-pkix-mod 3 : id-pkix1-explicit-93 | |
493 | id-pkix-mod 4 : id-pkix1-implicit-93 | |
494 | id-pkix-mod 5 : id-mod-crmf | |
495 | id-pkix-mod 6 : id-mod-cmc | |
496 | id-pkix-mod 7 : id-mod-kea-profile-88 | |
497 | id-pkix-mod 8 : id-mod-kea-profile-93 | |
498 | id-pkix-mod 9 : id-mod-cmp | |
499 | id-pkix-mod 10 : id-mod-qualified-cert-88 | |
500 | id-pkix-mod 11 : id-mod-qualified-cert-93 | |
501 | id-pkix-mod 12 : id-mod-attribute-cert | |
502 | id-pkix-mod 13 : id-mod-timestamp-protocol | |
503 | id-pkix-mod 14 : id-mod-ocsp | |
504 | id-pkix-mod 15 : id-mod-dvcs | |
505 | id-pkix-mod 16 : id-mod-cmp2000 | |
34959f7a DDO |
506 | id-pkix-mod 50 : id-mod-cmp2000-02 |
507 | id-pkix-mod 99 : id-mod-cmp2021-88 | |
508 | id-pkix-mod 100 : id-mod-cmp2021-02 | |
c2bbf9cf RL |
509 | |
510 | # PKIX Private Extensions | |
511 | !Cname info-access | |
512 | id-pe 1 : authorityInfoAccess : Authority Information Access | |
513 | id-pe 2 : biometricInfo : Biometric Info | |
514 | id-pe 3 : qcStatements | |
515 | id-pe 4 : ac-auditEntity | |
516 | id-pe 5 : ac-targeting | |
517 | id-pe 6 : aaControls | |
5f10073c NL |
518 | id-pe 7 : sbgp-ipAddrBlock |
519 | id-pe 8 : sbgp-autonomousSysNum | |
520 | id-pe 9 : sbgp-routerIdentifier | |
4b125068 RL |
521 | id-pe 10 : ac-proxying |
522 | !Cname sinfo-access | |
523 | id-pe 11 : subjectInfoAccess : Subject Information Access | |
6951c23a | 524 | id-pe 14 : proxyCertInfo : Proxy Certificate Information |
ba67253d | 525 | id-pe 24 : tlsfeature : TLS Feature |
d3372c2f JS |
526 | id-pe 28 : sbgp-ipAddrBlockv2 |
527 | id-pe 29 : sbgp-autonomousSysNumv2 | |
c2bbf9cf RL |
528 | |
529 | # PKIX policyQualifiers for Internet policy qualifiers | |
530 | id-qt 1 : id-qt-cps : Policy Qualifier CPS | |
531 | id-qt 2 : id-qt-unotice : Policy Qualifier User Notice | |
532 | id-qt 3 : textNotice | |
533 | ||
15633d74 | 534 | # https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml#smi-numbers-1.3.6.1.5.5.7.3 |
c2bbf9cf RL |
535 | # PKIX key purpose identifiers |
536 | !Cname server-auth | |
537 | id-kp 1 : serverAuth : TLS Web Server Authentication | |
538 | !Cname client-auth | |
539 | id-kp 2 : clientAuth : TLS Web Client Authentication | |
540 | !Cname code-sign | |
541 | id-kp 3 : codeSigning : Code Signing | |
542 | !Cname email-protect | |
543 | id-kp 4 : emailProtection : E-mail Protection | |
544 | id-kp 5 : ipsecEndSystem : IPSec End System | |
545 | id-kp 6 : ipsecTunnel : IPSec Tunnel | |
546 | id-kp 7 : ipsecUser : IPSec User | |
547 | !Cname time-stamp | |
548 | id-kp 8 : timeStamping : Time Stamping | |
d4fbe318 | 549 | # From OCSP spec RFC2560 |
c2bbf9cf RL |
550 | !Cname OCSP-sign |
551 | id-kp 9 : OCSPSigning : OCSP Signing | |
552 | id-kp 10 : DVCS : dvcs | |
b5c5a971 RS |
553 | !Cname ipsec-IKE |
554 | id-kp 17 : ipsecIKE : ipsec Internet Key Exchange | |
d9f77726 RS |
555 | id-kp 18 : capwapAC : Ctrl/provision WAP Access |
556 | id-kp 19 : capwapWTP : Ctrl/Provision WAP Termination | |
557 | !Cname sshClient | |
558 | id-kp 21 : secureShellClient : SSH Client | |
559 | !Cname sshServer | |
560 | id-kp 22 : secureShellServer : SSH Server | |
561 | id-kp 23 : sendRouter : Send Router | |
562 | id-kp 24 : sendProxiedRouter : Send Proxied Router | |
563 | id-kp 25 : sendOwner : Send Owner | |
564 | id-kp 26 : sendProxiedOwner : Send Proxied Owner | |
fdc83a7c MR |
565 | id-kp 27 : cmcCA : CMC Certificate Authority |
566 | id-kp 28 : cmcRA : CMC Registration Authority | |
15633d74 DDO |
567 | id-kp 29 : cmcArchive : CMC Archive Server |
568 | id-kp 30 : id-kp-bgpsec-router : BGPsec Router | |
569 | id-kp 31 : id-kp-BrandIndicatorforMessageIdentification : Brand Indicator for Message Identification | |
570 | id-kp 32 : cmKGA : Certificate Management Key Generation Authority | |
c2bbf9cf | 571 | |
15633d74 | 572 | # https://www.iana.org/assignments/smi-numbers/smi-numbers.xhtml#smi-numbers-1.3.6.1.5.5.7.4 |
c2bbf9cf RL |
573 | # CMP information types |
574 | id-it 1 : id-it-caProtEncCert | |
575 | id-it 2 : id-it-signKeyPairTypes | |
576 | id-it 3 : id-it-encKeyPairTypes | |
577 | id-it 4 : id-it-preferredSymmAlg | |
578 | id-it 5 : id-it-caKeyUpdateInfo | |
579 | id-it 6 : id-it-currentCRL | |
580 | id-it 7 : id-it-unsupportedOIDs | |
34959f7a | 581 | # [Reserved and Obsolete]: |
c2bbf9cf | 582 | id-it 8 : id-it-subscriptionRequest |
34959f7a | 583 | # [Reserved and Obsolete]: |
c2bbf9cf RL |
584 | id-it 9 : id-it-subscriptionResponse |
585 | id-it 10 : id-it-keyPairParamReq | |
586 | id-it 11 : id-it-keyPairParamRep | |
587 | id-it 12 : id-it-revPassphrase | |
588 | id-it 13 : id-it-implicitConfirm | |
589 | id-it 14 : id-it-confirmWaitTime | |
590 | id-it 15 : id-it-origPKIMessage | |
86140095 | 591 | id-it 16 : id-it-suppLangTags |
15633d74 DDO |
592 | id-it 17 : id-it-caCerts |
593 | id-it 18 : id-it-rootCaKeyUpdate | |
594 | id-it 19 : id-it-certReqTemplate | |
34959f7a DDO |
595 | id-it 20 : id-it-rootCaCert |
596 | id-it 21 : id-it-certProfile | |
597 | id-it 22 : id-it-crlStatusList | |
598 | id-it 23 : id-it-crls | |
c2bbf9cf RL |
599 | |
600 | # CRMF registration | |
601 | id-pkip 1 : id-regCtrl | |
602 | id-pkip 2 : id-regInfo | |
603 | ||
604 | # CRMF registration controls | |
605 | id-regCtrl 1 : id-regCtrl-regToken | |
606 | id-regCtrl 2 : id-regCtrl-authenticator | |
607 | id-regCtrl 3 : id-regCtrl-pkiPublicationInfo | |
608 | id-regCtrl 4 : id-regCtrl-pkiArchiveOptions | |
609 | id-regCtrl 5 : id-regCtrl-oldCertID | |
610 | id-regCtrl 6 : id-regCtrl-protocolEncrKey | |
34959f7a DDO |
611 | id-regCtrl 7 : id-regCtrl-altCertTemplate |
612 | # id-regCtrl 8 : id-regCtrl-wtlsTemplate [Reserved and Obsolete] | |
613 | # id-regCtrl 9 : id-regCtrl-regTokenUTF8 [Reserved and Obsolete] | |
614 | # id-regCtrl 10 : id-regCtrl-authenticatorUTF8 [Reserved and Obsolete] | |
615 | id-regCtrl 11 : id-regCtrl-algId | |
616 | id-regCtrl 12 : id-regCtrl-rsaKeyLen | |
c2bbf9cf RL |
617 | |
618 | # CRMF registration information | |
619 | id-regInfo 1 : id-regInfo-utf8Pairs | |
620 | id-regInfo 2 : id-regInfo-certReq | |
621 | ||
622 | # algorithms | |
623 | id-alg 1 : id-alg-des40 | |
624 | id-alg 2 : id-alg-noSignature | |
625 | id-alg 3 : id-alg-dh-sig-hmac-sha1 | |
626 | id-alg 4 : id-alg-dh-pop | |
627 | ||
628 | # CMC controls | |
629 | id-cmc 1 : id-cmc-statusInfo | |
630 | id-cmc 2 : id-cmc-identification | |
631 | id-cmc 3 : id-cmc-identityProof | |
632 | id-cmc 4 : id-cmc-dataReturn | |
633 | id-cmc 5 : id-cmc-transactionId | |
634 | id-cmc 6 : id-cmc-senderNonce | |
635 | id-cmc 7 : id-cmc-recipientNonce | |
636 | id-cmc 8 : id-cmc-addExtensions | |
637 | id-cmc 9 : id-cmc-encryptedPOP | |
638 | id-cmc 10 : id-cmc-decryptedPOP | |
639 | id-cmc 11 : id-cmc-lraPOPWitness | |
640 | id-cmc 15 : id-cmc-getCert | |
641 | id-cmc 16 : id-cmc-getCRL | |
642 | id-cmc 17 : id-cmc-revokeRequest | |
643 | id-cmc 18 : id-cmc-regInfo | |
644 | id-cmc 19 : id-cmc-responseInfo | |
645 | id-cmc 21 : id-cmc-queryPending | |
646 | id-cmc 22 : id-cmc-popLinkRandom | |
647 | id-cmc 23 : id-cmc-popLinkWitness | |
fdc83a7c | 648 | id-cmc 24 : id-cmc-confirmCertAcceptance |
c2bbf9cf RL |
649 | |
650 | # other names | |
651 | id-on 1 : id-on-personalData | |
df0681e5 | 652 | id-on 3 : id-on-permanentIdentifier : Permanent Identifier |
4baee2d7 DB |
653 | id-on 5 : id-on-xmppAddr : XmppAddr |
654 | id-on 7 : id-on-dnsSRV : SRVName | |
f5e77bb0 | 655 | id-on 8 : id-on-NAIRealm : NAIRealm |
4baee2d7 | 656 | id-on 9 : id-on-SmtpUTF8Mailbox : Smtp UTF8 Mailbox |
c2bbf9cf RL |
657 | |
658 | # personal data attributes | |
659 | id-pda 1 : id-pda-dateOfBirth | |
660 | id-pda 2 : id-pda-placeOfBirth | |
7ef70151 RL |
661 | id-pda 3 : id-pda-gender |
662 | id-pda 4 : id-pda-countryOfCitizenship | |
663 | id-pda 5 : id-pda-countryOfResidence | |
c2bbf9cf RL |
664 | |
665 | # attribute certificate attributes | |
666 | id-aca 1 : id-aca-authenticationInfo | |
667 | id-aca 2 : id-aca-accessIdentity | |
668 | id-aca 3 : id-aca-chargingIdentity | |
669 | id-aca 4 : id-aca-group | |
4b125068 | 670 | # attention : the following seems to be obsolete, replace by 'role' |
c2bbf9cf | 671 | id-aca 5 : id-aca-role |
4b125068 | 672 | id-aca 6 : id-aca-encAttrs |
c2bbf9cf RL |
673 | |
674 | # qualified certificate statements | |
675 | id-qcs 1 : id-qcs-pkixQCSyntax-v1 | |
676 | ||
d3372c2f JS |
677 | # PKIX Certificate Policies |
678 | id-cp 2 : ipAddr-asNumber | |
679 | id-cp 3 : ipAddr-asNumberv2 | |
680 | ||
c2bbf9cf RL |
681 | # CMC content types |
682 | id-cct 1 : id-cct-crs | |
683 | id-cct 2 : id-cct-PKIData | |
684 | id-cct 3 : id-cct-PKIResponse | |
685 | ||
6951c23a RL |
686 | # Predefined Proxy Certificate policy languages |
687 | id-ppl 0 : id-ppl-anyLanguage : Any language | |
688 | id-ppl 1 : id-ppl-inheritAll : Inherit all | |
689 | id-ppl 2 : id-ppl-independent : Independent | |
690 | ||
c2bbf9cf RL |
691 | # access descriptors for authority info access extension |
692 | !Cname ad-OCSP | |
693 | id-ad 1 : OCSP : OCSP | |
694 | !Cname ad-ca-issuers | |
695 | id-ad 2 : caIssuers : CA Issuers | |
696 | !Cname ad-timeStamping | |
15c2e126 | 697 | id-ad 3 : ad_timestamping : AD Time Stamping |
c2bbf9cf | 698 | !Cname ad-dvcs |
15c2e126 | 699 | id-ad 4 : AD_DVCS : ad dvcs |
6e150083 | 700 | id-ad 5 : caRepository : CA Repository |
d3372c2f JS |
701 | id-ad 10 : rpkiManifest : RPKI Manifest |
702 | id-ad 11 : signedObject : Signed Object | |
703 | id-ad 13 : rpkiNotify : RPKI Notify | |
c2bbf9cf RL |
704 | |
705 | !Alias id-pkix-OCSP ad-OCSP | |
706 | !module id-pkix-OCSP | |
707 | !Cname basic | |
708 | id-pkix-OCSP 1 : basicOCSPResponse : Basic OCSP Response | |
709 | id-pkix-OCSP 2 : Nonce : OCSP Nonce | |
710 | id-pkix-OCSP 3 : CrlID : OCSP CRL ID | |
711 | id-pkix-OCSP 4 : acceptableResponses : Acceptable OCSP Responses | |
f1a6a0d4 | 712 | id-pkix-OCSP 5 : noCheck : OCSP No Check |
c2bbf9cf RL |
713 | id-pkix-OCSP 6 : archiveCutoff : OCSP Archive Cutoff |
714 | id-pkix-OCSP 7 : serviceLocator : OCSP Service Locator | |
715 | id-pkix-OCSP 8 : extendedStatus : Extended OCSP Status | |
716 | id-pkix-OCSP 9 : valid | |
717 | id-pkix-OCSP 10 : path | |
718 | id-pkix-OCSP 11 : trustRoot : Trust Root | |
719 | !global | |
720 | ||
721 | 1 3 14 3 2 : algorithm : algorithm | |
722 | algorithm 3 : RSA-NP-MD5 : md5WithRSA | |
723 | algorithm 6 : DES-ECB : des-ecb | |
724 | algorithm 7 : DES-CBC : des-cbc | |
725 | !Cname des-ofb64 | |
726 | algorithm 8 : DES-OFB : des-ofb | |
727 | !Cname des-cfb64 | |
728 | algorithm 9 : DES-CFB : des-cfb | |
d02b48c6 | 729 | algorithm 11 : rsaSignature |
c2bbf9cf RL |
730 | !Cname dsa-2 |
731 | algorithm 12 : DSA-old : dsaEncryption-old | |
732 | algorithm 13 : DSA-SHA : dsaWithSHA | |
733 | algorithm 15 : RSA-SHA : shaWithRSAEncryption | |
c518ade1 | 734 | !Cname des-ede-ecb |
c2bbf9cf | 735 | algorithm 17 : DES-EDE : des-ede |
c518ade1 | 736 | !Cname des-ede3-ecb |
c2bbf9cf RL |
737 | : DES-EDE3 : des-ede3 |
738 | : DES-EDE-CBC : des-ede-cbc | |
739 | !Cname des-ede-cfb64 | |
740 | : DES-EDE-CFB : des-ede-cfb | |
741 | !Cname des-ede3-cfb64 | |
742 | : DES-EDE3-CFB : des-ede3-cfb | |
743 | !Cname des-ede-ofb64 | |
744 | : DES-EDE-OFB : des-ede-ofb | |
745 | !Cname des-ede3-ofb64 | |
746 | : DES-EDE3-OFB : des-ede3-ofb | |
747 | : DESX-CBC : desx-cbc | |
748 | algorithm 18 : SHA : sha | |
749 | algorithm 26 : SHA1 : sha1 | |
750 | !Cname dsaWithSHA1-2 | |
751 | algorithm 27 : DSA-SHA1-old : dsaWithSHA1-old | |
752 | algorithm 29 : RSA-SHA1-2 : sha1WithRSA | |
753 | ||
754 | 1 3 36 3 2 1 : RIPEMD160 : ripemd160 | |
755 | 1 3 36 3 3 1 2 : RSA-RIPEMD160 : ripemd160WithRSA | |
756 | ||
3f1679b2 P |
757 | 1 3 6 1 4 1 1722 12 2 1 : BLAKE2BMAC : blake2bmac |
758 | 1 3 6 1 4 1 1722 12 2 2 : BLAKE2SMAC : blake2smac | |
759 | blake2bmac 16 : BLAKE2b512 : blake2b512 | |
760 | blake2smac 8 : BLAKE2s256 : blake2s256 | |
2d0b4412 | 761 | |
c2bbf9cf RL |
762 | !Cname sxnet |
763 | 1 3 101 1 4 1 : SXNetID : Strong Extranet ID | |
764 | ||
765 | 2 5 : X500 : directory services (X.500) | |
766 | ||
767 | X500 4 : X509 | |
768 | X509 3 : CN : commonName | |
54d4f8c3 | 769 | X509 4 : SN : surname |
ffbe98b7 | 770 | X509 5 : : serialNumber |
c2bbf9cf RL |
771 | X509 6 : C : countryName |
772 | X509 7 : L : localityName | |
773 | X509 8 : ST : stateOrProvinceName | |
ddcfc25a | 774 | X509 9 : street : streetAddress |
c2bbf9cf RL |
775 | X509 10 : O : organizationName |
776 | X509 11 : OU : organizationalUnitName | |
ddcfc25a | 777 | X509 12 : title : title |
30911232 | 778 | X509 13 : : description |
ddcfc25a DSH |
779 | X509 14 : : searchGuide |
780 | X509 15 : : businessCategory | |
781 | X509 16 : : postalAddress | |
782 | X509 17 : : postalCode | |
783 | X509 18 : : postOfficeBox | |
784 | X509 19 : : physicalDeliveryOfficeName | |
785 | X509 20 : : telephoneNumber | |
786 | X509 21 : : telexNumber | |
787 | X509 22 : : teletexTerminalIdentifier | |
788 | X509 23 : : facsimileTelephoneNumber | |
789 | X509 24 : : x121Address | |
790 | X509 25 : : internationaliSDNNumber | |
791 | X509 26 : : registeredAddress | |
792 | X509 27 : : destinationIndicator | |
793 | X509 28 : : preferredDeliveryMethod | |
794 | X509 29 : : presentationAddress | |
795 | X509 30 : : supportedApplicationContext | |
796 | X509 31 : member : | |
797 | X509 32 : owner : | |
798 | X509 33 : : roleOccupant | |
799 | X509 34 : seeAlso : | |
800 | X509 35 : : userPassword | |
801 | X509 36 : : userCertificate | |
802 | X509 37 : : cACertificate | |
803 | X509 38 : : authorityRevocationList | |
804 | X509 39 : : certificateRevocationList | |
805 | X509 40 : : crossCertificatePair | |
c2bbf9cf | 806 | X509 41 : name : name |
aafafa31 | 807 | X509 42 : GN : givenName |
ddcfc25a | 808 | X509 43 : initials : initials |
f1e66437 | 809 | X509 44 : : generationQualifier |
30911232 | 810 | X509 45 : : x500UniqueIdentifier |
c2bbf9cf | 811 | X509 46 : dnQualifier : dnQualifier |
ddcfc25a DSH |
812 | X509 47 : : enhancedSearchGuide |
813 | X509 48 : : protocolInformation | |
814 | X509 49 : : distinguishedName | |
815 | X509 50 : : uniqueMember | |
816 | X509 51 : : houseIdentifier | |
817 | X509 52 : : supportedAlgorithms | |
818 | X509 53 : : deltaRevocationList | |
819 | X509 54 : dmdName : | |
34573173 | 820 | X509 65 : : pseudonym |
4b125068 | 821 | X509 72 : role : role |
4a8ab10d EA |
822 | X509 97 : : organizationIdentifier |
823 | X509 98 : c3 : countryCode3c | |
824 | X509 99 : n3 : countryCode3n | |
825 | X509 100 : : dnsName | |
826 | ||
c2bbf9cf RL |
827 | |
828 | X500 8 : X500algorithms : directory services - algorithms | |
829 | X500algorithms 1 1 : RSA : rsa | |
830 | X500algorithms 3 100 : RSA-MDC2 : mdc2WithRSA | |
831 | X500algorithms 3 101 : MDC2 : mdc2 | |
832 | ||
833 | X500 29 : id-ce | |
b0eedd77 NL |
834 | !Cname subject-directory-attributes |
835 | id-ce 9 : subjectDirectoryAttributes : X509v3 Subject Directory Attributes | |
c2bbf9cf RL |
836 | !Cname subject-key-identifier |
837 | id-ce 14 : subjectKeyIdentifier : X509v3 Subject Key Identifier | |
838 | !Cname key-usage | |
839 | id-ce 15 : keyUsage : X509v3 Key Usage | |
840 | !Cname private-key-usage-period | |
841 | id-ce 16 : privateKeyUsagePeriod : X509v3 Private Key Usage Period | |
842 | !Cname subject-alt-name | |
843 | id-ce 17 : subjectAltName : X509v3 Subject Alternative Name | |
844 | !Cname issuer-alt-name | |
845 | id-ce 18 : issuerAltName : X509v3 Issuer Alternative Name | |
846 | !Cname basic-constraints | |
847 | id-ce 19 : basicConstraints : X509v3 Basic Constraints | |
848 | !Cname crl-number | |
849 | id-ce 20 : crlNumber : X509v3 CRL Number | |
850 | !Cname crl-reason | |
851 | id-ce 21 : CRLReason : X509v3 CRL Reason Code | |
852 | !Cname invalidity-date | |
853 | id-ce 24 : invalidityDate : Invalidity Date | |
854 | !Cname delta-crl | |
855 | id-ce 27 : deltaCRL : X509v3 Delta CRL Indicator | |
231493c9 | 856 | !Cname issuing-distribution-point |
8332f91c | 857 | id-ce 28 : issuingDistributionPoint : X509v3 Issuing Distribution Point |
b0eedd77 NL |
858 | !Cname certificate-issuer |
859 | id-ce 29 : certificateIssuer : X509v3 Certificate Issuer | |
1c2d1412 DSH |
860 | !Cname name-constraints |
861 | id-ce 30 : nameConstraints : X509v3 Name Constraints | |
c2bbf9cf RL |
862 | !Cname crl-distribution-points |
863 | id-ce 31 : crlDistributionPoints : X509v3 CRL Distribution Points | |
864 | !Cname certificate-policies | |
865 | id-ce 32 : certificatePolicies : X509v3 Certificate Policies | |
ba5df66a DSH |
866 | !Cname any-policy |
867 | certificate-policies 0 : anyPolicy : X509v3 Any Policy | |
6f528cac DSH |
868 | !Cname policy-mappings |
869 | id-ce 33 : policyMappings : X509v3 Policy Mappings | |
c2bbf9cf RL |
870 | !Cname authority-key-identifier |
871 | id-ce 35 : authorityKeyIdentifier : X509v3 Authority Key Identifier | |
4b125068 RL |
872 | !Cname policy-constraints |
873 | id-ce 36 : policyConstraints : X509v3 Policy Constraints | |
c2bbf9cf RL |
874 | !Cname ext-key-usage |
875 | id-ce 37 : extendedKeyUsage : X509v3 Extended Key Usage | |
249a77f5 DSH |
876 | !Cname freshest-crl |
877 | id-ce 46 : freshestCRL : X509v3 Freshest CRL | |
edec614e DSH |
878 | !Cname inhibit-any-policy |
879 | id-ce 54 : inhibitAnyPolicy : X509v3 Inhibit Any Policy | |
4b125068 RL |
880 | !Cname target-information |
881 | id-ce 55 : targetInformation : X509v3 AC Targeting | |
882 | !Cname no-rev-avail | |
883 | id-ce 56 : noRevAvail : X509v3 No Revocation Available | |
c2bbf9cf | 884 | |
df4c395c DSH |
885 | # From RFC5280 |
886 | ext-key-usage 0 : anyExtendedKeyUsage : Any Extended Key Usage | |
887 | ||
888 | ||
c2bbf9cf RL |
889 | !Cname netscape |
890 | 2 16 840 1 113730 : Netscape : Netscape Communications Corp. | |
891 | !Cname netscape-cert-extension | |
892 | netscape 1 : nsCertExt : Netscape Certificate Extension | |
893 | !Cname netscape-data-type | |
894 | netscape 2 : nsDataType : Netscape Data Type | |
895 | !Cname netscape-cert-type | |
896 | netscape-cert-extension 1 : nsCertType : Netscape Cert Type | |
897 | !Cname netscape-base-url | |
898 | netscape-cert-extension 2 : nsBaseUrl : Netscape Base Url | |
899 | !Cname netscape-revocation-url | |
900 | netscape-cert-extension 3 : nsRevocationUrl : Netscape Revocation Url | |
901 | !Cname netscape-ca-revocation-url | |
902 | netscape-cert-extension 4 : nsCaRevocationUrl : Netscape CA Revocation Url | |
903 | !Cname netscape-renewal-url | |
904 | netscape-cert-extension 7 : nsRenewalUrl : Netscape Renewal Url | |
905 | !Cname netscape-ca-policy-url | |
906 | netscape-cert-extension 8 : nsCaPolicyUrl : Netscape CA Policy Url | |
907 | !Cname netscape-ssl-server-name | |
908 | netscape-cert-extension 12 : nsSslServerName : Netscape SSL Server Name | |
909 | !Cname netscape-comment | |
910 | netscape-cert-extension 13 : nsComment : Netscape Comment | |
911 | !Cname netscape-cert-sequence | |
912 | netscape-data-type 5 : nsCertSequence : Netscape Certificate Sequence | |
913 | !Cname ns-sgc | |
914 | netscape 4 1 : nsSGC : Netscape Server Gated Crypto | |
d02b48c6 | 915 | |
622ec449 RL |
916 | # iso(1) |
917 | iso 3 : ORG : org | |
918 | org 6 : DOD : dod | |
919 | dod 1 : IANA : iana | |
920 | !Alias internet iana | |
921 | ||
922 | internet 1 : directory : Directory | |
923 | internet 2 : mgmt : Management | |
924 | internet 3 : experimental : Experimental | |
925 | internet 4 : private : Private | |
926 | internet 5 : security : Security | |
927 | internet 6 : snmpv2 : SNMPv2 | |
ea7fc031 LJ |
928 | # Documents refer to "internet 7" as "mail". This however leads to ambiguities |
929 | # with RFC2798, Section 9.1.3, where "mail" is defined as the short name for | |
930 | # rfc822Mailbox. The short name is therefore here left out for a reason. | |
46f4e1be | 931 | # Subclasses of "mail", e.g. "MIME MHS" don't constitute a problem, as |
ea7fc031 LJ |
932 | # references are realized via long name "Mail" (with capital M). |
933 | internet 7 : : Mail | |
622ec449 | 934 | |
4825092b | 935 | Private 1 : enterprises : Enterprises |
622ec449 RL |
936 | |
937 | # RFC 2247 | |
4825092b | 938 | Enterprises 1466 344 : dcobject : dcObject |
622ec449 | 939 | |
30911232 LJ |
940 | # RFC 1495 |
941 | Mail 1 : mime-mhs : MIME MHS | |
942 | mime-mhs 1 : mime-mhs-headings : mime-mhs-headings | |
943 | mime-mhs 2 : mime-mhs-bodies : mime-mhs-bodies | |
944 | mime-mhs-headings 1 : id-hex-partial-message : id-hex-partial-message | |
945 | mime-mhs-headings 2 : id-hex-multipart-message : id-hex-multipart-message | |
946 | ||
12048657 | 947 | # RFC 3274 |
c2bbf9cf | 948 | !Cname zlib-compression |
b510d775 | 949 | id-smime-alg 8 : ZLIB : zlib compression |
622ec449 | 950 | |
deb2c1a1 DSH |
951 | # AES aka Rijndael |
952 | ||
953 | !Alias csor 2 16 840 1 101 3 | |
954 | !Alias nistAlgorithms csor 4 | |
955 | !Alias aes nistAlgorithms 1 | |
956 | ||
957 | aes 1 : AES-128-ECB : aes-128-ecb | |
958 | aes 2 : AES-128-CBC : aes-128-cbc | |
ab1dee1e | 959 | !Cname aes-128-ofb128 |
deb2c1a1 | 960 | aes 3 : AES-128-OFB : aes-128-ofb |
ab1dee1e | 961 | !Cname aes-128-cfb128 |
deb2c1a1 | 962 | aes 4 : AES-128-CFB : aes-128-cfb |
e5a4de9e AP |
963 | aes 5 : id-aes128-wrap |
964 | aes 6 : id-aes128-GCM : aes-128-gcm | |
965 | aes 7 : id-aes128-CCM : aes-128-ccm | |
966 | aes 8 : id-aes128-wrap-pad | |
deb2c1a1 DSH |
967 | |
968 | aes 21 : AES-192-ECB : aes-192-ecb | |
969 | aes 22 : AES-192-CBC : aes-192-cbc | |
ab1dee1e | 970 | !Cname aes-192-ofb128 |
deb2c1a1 | 971 | aes 23 : AES-192-OFB : aes-192-ofb |
ab1dee1e | 972 | !Cname aes-192-cfb128 |
deb2c1a1 | 973 | aes 24 : AES-192-CFB : aes-192-cfb |
e5a4de9e AP |
974 | aes 25 : id-aes192-wrap |
975 | aes 26 : id-aes192-GCM : aes-192-gcm | |
976 | aes 27 : id-aes192-CCM : aes-192-ccm | |
977 | aes 28 : id-aes192-wrap-pad | |
deb2c1a1 DSH |
978 | |
979 | aes 41 : AES-256-ECB : aes-256-ecb | |
980 | aes 42 : AES-256-CBC : aes-256-cbc | |
ab1dee1e | 981 | !Cname aes-256-ofb128 |
deb2c1a1 | 982 | aes 43 : AES-256-OFB : aes-256-ofb |
ab1dee1e | 983 | !Cname aes-256-cfb128 |
deb2c1a1 | 984 | aes 44 : AES-256-CFB : aes-256-cfb |
e5a4de9e AP |
985 | aes 45 : id-aes256-wrap |
986 | aes 46 : id-aes256-GCM : aes-256-gcm | |
987 | aes 47 : id-aes256-CCM : aes-256-ccm | |
988 | aes 48 : id-aes256-wrap-pad | |
deb2c1a1 | 989 | |
5cd42251 P |
990 | ieee-siswg 0 1 1 : AES-128-XTS : aes-128-xts |
991 | ieee-siswg 0 1 2 : AES-256-XTS : aes-256-xts | |
992 | ||
8d1ebe0b RL |
993 | # There are no OIDs for these modes... |
994 | ||
995 | : AES-128-CFB1 : aes-128-cfb1 | |
996 | : AES-192-CFB1 : aes-192-cfb1 | |
997 | : AES-256-CFB1 : aes-256-cfb1 | |
998 | : AES-128-CFB8 : aes-128-cfb8 | |
999 | : AES-192-CFB8 : aes-192-cfb8 | |
1000 | : AES-256-CFB8 : aes-256-cfb8 | |
e5a4de9e AP |
1001 | : AES-128-CTR : aes-128-ctr |
1002 | : AES-192-CTR : aes-192-ctr | |
1003 | : AES-256-CTR : aes-256-ctr | |
e6b336ef MC |
1004 | : AES-128-OCB : aes-128-ocb |
1005 | : AES-192-OCB : aes-192-ocb | |
1006 | : AES-256-OCB : aes-256-ocb | |
8d1ebe0b RL |
1007 | : DES-CFB1 : des-cfb1 |
1008 | : DES-CFB8 : des-cfb8 | |
1009 | : DES-EDE3-CFB1 : des-ede3-cfb1 | |
1010 | : DES-EDE3-CFB8 : des-ede3-cfb8 | |
1011 | ||
4811746f AP |
1012 | # OIDs for SHA224, SHA256, SHA385 and SHA512, according to x9.84 and |
1013 | # http://csrc.nist.gov/groups/ST/crypto_apps_infra/csor/algorithms.html | |
1014 | # "Middle" names are specified to be id-sha256, id-sha384, etc., but | |
1015 | # we adhere to unprefixed capitals for backward compatibility... | |
6bca8e38 AP |
1016 | !Alias nist_hashalgs nistAlgorithms 2 |
1017 | nist_hashalgs 1 : SHA256 : sha256 | |
1018 | nist_hashalgs 2 : SHA384 : sha384 | |
1019 | nist_hashalgs 3 : SHA512 : sha512 | |
1020 | nist_hashalgs 4 : SHA224 : sha224 | |
4811746f AP |
1021 | nist_hashalgs 5 : SHA512-224 : sha512-224 |
1022 | nist_hashalgs 6 : SHA512-256 : sha512-256 | |
1023 | nist_hashalgs 7 : SHA3-224 : sha3-224 | |
1024 | nist_hashalgs 8 : SHA3-256 : sha3-256 | |
1025 | nist_hashalgs 9 : SHA3-384 : sha3-384 | |
1026 | nist_hashalgs 10 : SHA3-512 : sha3-512 | |
1027 | nist_hashalgs 11 : SHAKE128 : shake128 | |
1028 | nist_hashalgs 12 : SHAKE256 : shake256 | |
1029 | nist_hashalgs 13 : id-hmacWithSHA3-224 : hmac-sha3-224 | |
1030 | nist_hashalgs 14 : id-hmacWithSHA3-256 : hmac-sha3-256 | |
1031 | nist_hashalgs 15 : id-hmacWithSHA3-384 : hmac-sha3-384 | |
1032 | nist_hashalgs 16 : id-hmacWithSHA3-512 : hmac-sha3-512 | |
1033 | # Below two are incomplete OIDs, to be uncommented when we figure out | |
1034 | # how to handle them... | |
1035 | # nist_hashalgs 17 : id-shake128-len : shake128-len | |
1036 | # nist_hashalgs 18 : id-shake256-len : shake256-len | |
3f1679b2 P |
1037 | nist_hashalgs 19 : KMAC128 : kmac128 |
1038 | nist_hashalgs 20 : KMAC256 : kmac256 | |
1039 | # nist_hashalgs 21 : KMAC128-XOF : kmac128-xof | |
1040 | # nist_hashalgs 22 : KMAC256-XOF : kmac256-xof | |
6bca8e38 | 1041 | |
357d5de5 NL |
1042 | # OIDs for dsa-with-sha224 and dsa-with-sha256 |
1043 | !Alias dsa_with_sha2 nistAlgorithms 3 | |
1044 | dsa_with_sha2 1 : dsa_with_SHA224 | |
1045 | dsa_with_sha2 2 : dsa_with_SHA256 | |
4811746f AP |
1046 | # Above two belong below, but kept as they are for backward compatibility |
1047 | !Alias sigAlgs nistAlgorithms 3 | |
1048 | sigAlgs 3 : id-dsa-with-sha384 : dsa_with_SHA384 | |
1049 | sigAlgs 4 : id-dsa-with-sha512 : dsa_with_SHA512 | |
1050 | sigAlgs 5 : id-dsa-with-sha3-224 : dsa_with_SHA3-224 | |
1051 | sigAlgs 6 : id-dsa-with-sha3-256 : dsa_with_SHA3-256 | |
1052 | sigAlgs 7 : id-dsa-with-sha3-384 : dsa_with_SHA3-384 | |
1053 | sigAlgs 8 : id-dsa-with-sha3-512 : dsa_with_SHA3-512 | |
1054 | sigAlgs 9 : id-ecdsa-with-sha3-224 : ecdsa_with_SHA3-224 | |
1055 | sigAlgs 10 : id-ecdsa-with-sha3-256 : ecdsa_with_SHA3-256 | |
1056 | sigAlgs 11 : id-ecdsa-with-sha3-384 : ecdsa_with_SHA3-384 | |
1057 | sigAlgs 12 : id-ecdsa-with-sha3-512 : ecdsa_with_SHA3-512 | |
1058 | sigAlgs 13 : id-rsassa-pkcs1-v1_5-with-sha3-224 : RSA-SHA3-224 | |
1059 | sigAlgs 14 : id-rsassa-pkcs1-v1_5-with-sha3-256 : RSA-SHA3-256 | |
f9f3e175 | 1060 | sigAlgs 15 : id-rsassa-pkcs1-v1_5-with-sha3-384 : RSA-SHA3-384 |
4811746f | 1061 | sigAlgs 16 : id-rsassa-pkcs1-v1_5-with-sha3-512 : RSA-SHA3-512 |
357d5de5 | 1062 | |
a6b7ffdd DSH |
1063 | # Hold instruction CRL entry extension |
1064 | !Cname hold-instruction-code | |
1065 | id-ce 23 : holdInstructionCode : Hold Instruction Code | |
1066 | !Alias holdInstruction X9-57 2 | |
1067 | !Cname hold-instruction-none | |
1068 | holdInstruction 1 : holdInstructionNone : Hold Instruction None | |
1069 | !Cname hold-instruction-call-issuer | |
1070 | holdInstruction 2 : holdInstructionCallIssuer : Hold Instruction Call Issuer | |
1071 | !Cname hold-instruction-reject | |
1072 | holdInstruction 3 : holdInstructionReject : Hold Instruction Reject | |
64b48877 | 1073 | |
f9d183c2 | 1074 | # OID's from ITU-T. Most of this is defined in RFC 1274. A couple of |
64b48877 | 1075 | # them are also mentioned in RFC 2247 |
5f7d4e91 LJ |
1076 | # OIDs specific to Electronic Signature Standard/CAdES are as specified in |
1077 | # ETSI EN 319 122-1 V1.2.1 (2021-10): | |
1078 | # Electronic Signatures and Infrastructures (ESI); CAdES digital signatures; | |
1079 | # Part 1: Building blocks and CAdES baseline signatures | |
1080 | itu-t 4 : itu-t-identified-organization | |
1081 | itu-t-identified-organization 0: etsi | |
1082 | etsi 1733 : electronic-signature-standard | |
1083 | electronic-signature-standard 2: ess-attributes | |
1084 | ess-attributes 1 : id-aa-ets-mimeType | |
1085 | ess-attributes 2 : id-aa-ets-longTermValidation | |
1086 | ess-attributes 3 : id-aa-ets-SignaturePolicyDocument | |
1087 | ess-attributes 4 : id-aa-ets-archiveTimestampV3 | |
1088 | ess-attributes 5 : id-aa-ATSHashIndex | |
1089 | etsi 19122 : cades | |
1090 | cades 1 : cades-attributes | |
1091 | cades-attributes 1 : id-aa-ets-signerAttrV2 | |
1092 | cades-attributes 3 : id-aa-ets-sigPolicyStore | |
1093 | cades-attributes 4 : id-aa-ATSHashIndex-v2 | |
1094 | cades-attributes 5 : id-aa-ATSHashIndex-v3 | |
1095 | cades-attributes 6 : signedAssertion | |
1096 | ||
f9d183c2 | 1097 | itu-t 9 : data |
64b48877 RL |
1098 | data 2342 : pss |
1099 | pss 19200300 : ucl | |
1100 | ucl 100 : pilot | |
1101 | pilot 1 : : pilotAttributeType | |
1102 | pilot 3 : : pilotAttributeSyntax | |
1103 | pilot 4 : : pilotObjectClass | |
1104 | pilot 10 : : pilotGroups | |
1105 | pilotAttributeSyntax 4 : : iA5StringSyntax | |
1106 | pilotAttributeSyntax 5 : : caseIgnoreIA5StringSyntax | |
1107 | pilotObjectClass 3 : : pilotObject | |
1108 | pilotObjectClass 4 : : pilotPerson | |
1109 | pilotObjectClass 5 : account | |
1110 | pilotObjectClass 6 : document | |
1111 | pilotObjectClass 7 : room | |
1112 | pilotObjectClass 9 : : documentSeries | |
1113 | pilotObjectClass 13 : domain : Domain | |
1114 | pilotObjectClass 14 : : rFC822localPart | |
1115 | pilotObjectClass 15 : : dNSDomain | |
1116 | pilotObjectClass 17 : : domainRelatedObject | |
1117 | pilotObjectClass 18 : : friendlyCountry | |
1118 | pilotObjectClass 19 : : simpleSecurityObject | |
1119 | pilotObjectClass 20 : : pilotOrganization | |
1120 | pilotObjectClass 21 : : pilotDSA | |
1121 | pilotObjectClass 22 : : qualityLabelledData | |
d4704d52 | 1122 | pilotAttributeType 1 : UID : userId |
64b48877 | 1123 | pilotAttributeType 2 : : textEncodedORAddress |
ea7fc031 | 1124 | pilotAttributeType 3 : mail : rfc822Mailbox |
64b48877 RL |
1125 | pilotAttributeType 4 : info |
1126 | pilotAttributeType 5 : : favouriteDrink | |
1127 | pilotAttributeType 6 : : roomNumber | |
1128 | pilotAttributeType 7 : photo | |
1129 | pilotAttributeType 8 : : userClass | |
1130 | pilotAttributeType 9 : host | |
1131 | pilotAttributeType 10 : manager | |
1132 | pilotAttributeType 11 : : documentIdentifier | |
1133 | pilotAttributeType 12 : : documentTitle | |
1134 | pilotAttributeType 13 : : documentVersion | |
1135 | pilotAttributeType 14 : : documentAuthor | |
1136 | pilotAttributeType 15 : : documentLocation | |
1137 | pilotAttributeType 20 : : homeTelephoneNumber | |
1138 | pilotAttributeType 21 : secretary | |
1139 | pilotAttributeType 22 : : otherMailbox | |
1140 | pilotAttributeType 23 : : lastModifiedTime | |
1141 | pilotAttributeType 24 : : lastModifiedBy | |
1142 | pilotAttributeType 25 : DC : domainComponent | |
1143 | pilotAttributeType 26 : : aRecord | |
1d00800e | 1144 | pilotAttributeType 27 : : pilotAttributeType27 |
64b48877 RL |
1145 | pilotAttributeType 28 : : mXRecord |
1146 | pilotAttributeType 29 : : nSRecord | |
1147 | pilotAttributeType 30 : : sOARecord | |
1148 | pilotAttributeType 31 : : cNAMERecord | |
1149 | pilotAttributeType 37 : : associatedDomain | |
1150 | pilotAttributeType 38 : : associatedName | |
1151 | pilotAttributeType 39 : : homePostalAddress | |
1152 | pilotAttributeType 40 : : personalTitle | |
1153 | pilotAttributeType 41 : : mobileTelephoneNumber | |
1154 | pilotAttributeType 42 : : pagerTelephoneNumber | |
1155 | pilotAttributeType 43 : : friendlyCountryName | |
c81f425e | 1156 | pilotAttributeType 44 : uid : uniqueIdentifier |
64b48877 RL |
1157 | pilotAttributeType 45 : : organizationalStatus |
1158 | pilotAttributeType 46 : : janetMailbox | |
1159 | pilotAttributeType 47 : : mailPreferenceOption | |
1160 | pilotAttributeType 48 : : buildingName | |
1161 | pilotAttributeType 49 : : dSAQuality | |
1162 | pilotAttributeType 50 : : singleLevelQuality | |
1163 | pilotAttributeType 51 : : subtreeMinimumQuality | |
1164 | pilotAttributeType 52 : : subtreeMaximumQuality | |
1165 | pilotAttributeType 53 : : personalSignature | |
1166 | pilotAttributeType 54 : : dITRedirect | |
1167 | pilotAttributeType 55 : audio | |
1168 | pilotAttributeType 56 : : documentPublisher | |
82869b3c | 1169 | |
f9d183c2 | 1170 | international-organizations 42 : id-set : Secure Electronic Transactions |
82869b3c LJ |
1171 | |
1172 | id-set 0 : set-ctype : content types | |
1173 | id-set 1 : set-msgExt : message extensions | |
1174 | id-set 3 : set-attr | |
1175 | id-set 5 : set-policy | |
1176 | id-set 7 : set-certExt : certificate extensions | |
1177 | id-set 8 : set-brand | |
1178 | ||
1179 | set-ctype 0 : setct-PANData | |
1180 | set-ctype 1 : setct-PANToken | |
1181 | set-ctype 2 : setct-PANOnly | |
1182 | set-ctype 3 : setct-OIData | |
1183 | set-ctype 4 : setct-PI | |
1184 | set-ctype 5 : setct-PIData | |
1185 | set-ctype 6 : setct-PIDataUnsigned | |
1186 | set-ctype 7 : setct-HODInput | |
1187 | set-ctype 8 : setct-AuthResBaggage | |
1188 | set-ctype 9 : setct-AuthRevReqBaggage | |
1189 | set-ctype 10 : setct-AuthRevResBaggage | |
1190 | set-ctype 11 : setct-CapTokenSeq | |
1191 | set-ctype 12 : setct-PInitResData | |
1192 | set-ctype 13 : setct-PI-TBS | |
1193 | set-ctype 14 : setct-PResData | |
1194 | set-ctype 16 : setct-AuthReqTBS | |
1195 | set-ctype 17 : setct-AuthResTBS | |
1196 | set-ctype 18 : setct-AuthResTBSX | |
1197 | set-ctype 19 : setct-AuthTokenTBS | |
1198 | set-ctype 20 : setct-CapTokenData | |
1199 | set-ctype 21 : setct-CapTokenTBS | |
1200 | set-ctype 22 : setct-AcqCardCodeMsg | |
1201 | set-ctype 23 : setct-AuthRevReqTBS | |
1202 | set-ctype 24 : setct-AuthRevResData | |
1203 | set-ctype 25 : setct-AuthRevResTBS | |
1204 | set-ctype 26 : setct-CapReqTBS | |
1205 | set-ctype 27 : setct-CapReqTBSX | |
1206 | set-ctype 28 : setct-CapResData | |
1207 | set-ctype 29 : setct-CapRevReqTBS | |
1208 | set-ctype 30 : setct-CapRevReqTBSX | |
1209 | set-ctype 31 : setct-CapRevResData | |
1210 | set-ctype 32 : setct-CredReqTBS | |
1211 | set-ctype 33 : setct-CredReqTBSX | |
1212 | set-ctype 34 : setct-CredResData | |
1213 | set-ctype 35 : setct-CredRevReqTBS | |
1214 | set-ctype 36 : setct-CredRevReqTBSX | |
1215 | set-ctype 37 : setct-CredRevResData | |
1216 | set-ctype 38 : setct-PCertReqData | |
1217 | set-ctype 39 : setct-PCertResTBS | |
1218 | set-ctype 40 : setct-BatchAdminReqData | |
1219 | set-ctype 41 : setct-BatchAdminResData | |
1220 | set-ctype 42 : setct-CardCInitResTBS | |
1221 | set-ctype 43 : setct-MeAqCInitResTBS | |
1222 | set-ctype 44 : setct-RegFormResTBS | |
1223 | set-ctype 45 : setct-CertReqData | |
1224 | set-ctype 46 : setct-CertReqTBS | |
1225 | set-ctype 47 : setct-CertResData | |
1226 | set-ctype 48 : setct-CertInqReqTBS | |
1227 | set-ctype 49 : setct-ErrorTBS | |
1228 | set-ctype 50 : setct-PIDualSignedTBE | |
1229 | set-ctype 51 : setct-PIUnsignedTBE | |
1230 | set-ctype 52 : setct-AuthReqTBE | |
1231 | set-ctype 53 : setct-AuthResTBE | |
1232 | set-ctype 54 : setct-AuthResTBEX | |
1233 | set-ctype 55 : setct-AuthTokenTBE | |
1234 | set-ctype 56 : setct-CapTokenTBE | |
1235 | set-ctype 57 : setct-CapTokenTBEX | |
1236 | set-ctype 58 : setct-AcqCardCodeMsgTBE | |
1237 | set-ctype 59 : setct-AuthRevReqTBE | |
1238 | set-ctype 60 : setct-AuthRevResTBE | |
1239 | set-ctype 61 : setct-AuthRevResTBEB | |
1240 | set-ctype 62 : setct-CapReqTBE | |
1241 | set-ctype 63 : setct-CapReqTBEX | |
1242 | set-ctype 64 : setct-CapResTBE | |
1243 | set-ctype 65 : setct-CapRevReqTBE | |
1244 | set-ctype 66 : setct-CapRevReqTBEX | |
1245 | set-ctype 67 : setct-CapRevResTBE | |
1246 | set-ctype 68 : setct-CredReqTBE | |
1247 | set-ctype 69 : setct-CredReqTBEX | |
1248 | set-ctype 70 : setct-CredResTBE | |
1249 | set-ctype 71 : setct-CredRevReqTBE | |
1250 | set-ctype 72 : setct-CredRevReqTBEX | |
1251 | set-ctype 73 : setct-CredRevResTBE | |
1252 | set-ctype 74 : setct-BatchAdminReqTBE | |
1253 | set-ctype 75 : setct-BatchAdminResTBE | |
1254 | set-ctype 76 : setct-RegFormReqTBE | |
1255 | set-ctype 77 : setct-CertReqTBE | |
1256 | set-ctype 78 : setct-CertReqTBEX | |
1257 | set-ctype 79 : setct-CertResTBE | |
1258 | set-ctype 80 : setct-CRLNotificationTBS | |
1259 | set-ctype 81 : setct-CRLNotificationResTBS | |
1260 | set-ctype 82 : setct-BCIDistributionTBS | |
1261 | ||
1262 | set-msgExt 1 : setext-genCrypt : generic cryptogram | |
1263 | set-msgExt 3 : setext-miAuth : merchant initiated auth | |
1264 | set-msgExt 4 : setext-pinSecure | |
1265 | set-msgExt 5 : setext-pinAny | |
1266 | set-msgExt 7 : setext-track2 | |
1267 | set-msgExt 8 : setext-cv : additional verification | |
1268 | ||
1269 | set-policy 0 : set-policy-root | |
1270 | ||
1271 | set-certExt 0 : setCext-hashedRoot | |
1272 | set-certExt 1 : setCext-certType | |
1273 | set-certExt 2 : setCext-merchData | |
1274 | set-certExt 3 : setCext-cCertRequired | |
1275 | set-certExt 4 : setCext-tunneling | |
1276 | set-certExt 5 : setCext-setExt | |
1277 | set-certExt 6 : setCext-setQualf | |
1278 | set-certExt 7 : setCext-PGWYcapabilities | |
1279 | set-certExt 8 : setCext-TokenIdentifier | |
1280 | set-certExt 9 : setCext-Track2Data | |
1281 | set-certExt 10 : setCext-TokenType | |
1282 | set-certExt 11 : setCext-IssuerCapabilities | |
1283 | ||
1284 | set-attr 0 : setAttr-Cert | |
1285 | set-attr 1 : setAttr-PGWYcap : payment gateway capabilities | |
1286 | set-attr 2 : setAttr-TokenType | |
1287 | set-attr 3 : setAttr-IssCap : issuer capabilities | |
1288 | ||
1289 | setAttr-Cert 0 : set-rootKeyThumb | |
1290 | setAttr-Cert 1 : set-addPolicy | |
1291 | ||
1292 | setAttr-TokenType 1 : setAttr-Token-EMV | |
1293 | setAttr-TokenType 2 : setAttr-Token-B0Prime | |
1294 | ||
1295 | setAttr-IssCap 3 : setAttr-IssCap-CVM | |
1296 | setAttr-IssCap 4 : setAttr-IssCap-T2 | |
1297 | setAttr-IssCap 5 : setAttr-IssCap-Sig | |
1298 | ||
1299 | setAttr-IssCap-CVM 1 : setAttr-GenCryptgrm : generate cryptogram | |
1300 | setAttr-IssCap-T2 1 : setAttr-T2Enc : encrypted track 2 | |
1301 | setAttr-IssCap-T2 2 : setAttr-T2cleartxt : cleartext track 2 | |
1302 | ||
1303 | setAttr-IssCap-Sig 1 : setAttr-TokICCsig : ICC or token signature | |
1304 | setAttr-IssCap-Sig 2 : setAttr-SecDevSig : secure device signature | |
1305 | ||
1306 | set-brand 1 : set-brand-IATA-ATA | |
1307 | set-brand 30 : set-brand-Diners | |
1308 | set-brand 34 : set-brand-AmericanExpress | |
1309 | set-brand 35 : set-brand-JCB | |
1310 | set-brand 4 : set-brand-Visa | |
1311 | set-brand 5 : set-brand-MasterCard | |
1312 | set-brand 6011 : set-brand-Novus | |
1313 | ||
1314 | rsadsi 3 10 : DES-CDMF : des-cdmf | |
1315 | rsadsi 1 1 6 : rsaOAEPEncryptionSET | |
0d78bc33 RL |
1316 | |
1317 | : Oakley-EC2N-3 : ipsec3 | |
1318 | : Oakley-EC2N-4 : ipsec4 | |
f106fb85 AP |
1319 | |
1320 | iso 0 10118 3 0 55 : whirlpool | |
74e564cd DSH |
1321 | |
1322 | # GOST OIDs | |
1323 | ||
1324 | member-body 643 2 2 : cryptopro | |
362ab3e4 | 1325 | member-body 643 2 9 : cryptocom |
31001f81 | 1326 | member-body 643 7 1 : id-tc26 |
228b4e42 | 1327 | |
74e564cd DSH |
1328 | cryptopro 3 : id-GostR3411-94-with-GostR3410-2001 : GOST R 34.11-94 with GOST R 34.10-2001 |
1329 | cryptopro 4 : id-GostR3411-94-with-GostR3410-94 : GOST R 34.11-94 with GOST R 34.10-94 | |
228b4e42 DSH |
1330 | !Cname id-GostR3411-94 |
1331 | cryptopro 9 : md_gost94 : GOST R 34.11-94 | |
362ab3e4 | 1332 | cryptopro 10 : id-HMACGostR3411-94 : HMAC GOST 34.11-94 |
5a47825e DSH |
1333 | !Cname id-GostR3410-2001 |
1334 | cryptopro 19 : gost2001 : GOST R 34.10-2001 | |
1335 | !Cname id-GostR3410-94 | |
1336 | cryptopro 20 : gost94 : GOST R 34.10-94 | |
5e0e9fce DSH |
1337 | !Cname id-Gost28147-89 |
1338 | cryptopro 21 : gost89 : GOST 28147-89 | |
9981a51e | 1339 | : gost89-cnt |
31001f81 | 1340 | : gost89-cnt-12 |
52ee3ed3 DB |
1341 | : gost89-cbc |
1342 | : gost89-ecb | |
1343 | : gost89-ctr | |
16fe5f8b | 1344 | !Cname id-Gost28147-89-MAC |
81025661 | 1345 | cryptopro 22 : gost-mac : GOST 28147-89 MAC |
31001f81 | 1346 | : gost-mac-12 |
228b4e42 DSH |
1347 | !Cname id-GostR3411-94-prf |
1348 | cryptopro 23 : prf-gostr3411-94 : GOST R 34.11-94 PRF | |
362ab3e4 DSH |
1349 | cryptopro 98 : id-GostR3410-2001DH : GOST R 34.10-2001 DH |
1350 | cryptopro 99 : id-GostR3410-94DH : GOST R 34.10-94 DH | |
1351 | ||
1352 | cryptopro 14 1 : id-Gost28147-89-CryptoPro-KeyMeshing | |
1353 | cryptopro 14 0 : id-Gost28147-89-None-KeyMeshing | |
2aed84d1 DSH |
1354 | |
1355 | # GOST parameter set OIDs | |
1356 | ||
1357 | cryptopro 30 0 : id-GostR3411-94-TestParamSet | |
1358 | cryptopro 30 1 : id-GostR3411-94-CryptoProParamSet | |
1359 | ||
1360 | cryptopro 31 0 : id-Gost28147-89-TestParamSet | |
1361 | cryptopro 31 1 : id-Gost28147-89-CryptoPro-A-ParamSet | |
1362 | cryptopro 31 2 : id-Gost28147-89-CryptoPro-B-ParamSet | |
1363 | cryptopro 31 3 : id-Gost28147-89-CryptoPro-C-ParamSet | |
1364 | cryptopro 31 4 : id-Gost28147-89-CryptoPro-D-ParamSet | |
1365 | cryptopro 31 5 : id-Gost28147-89-CryptoPro-Oscar-1-1-ParamSet | |
1366 | cryptopro 31 6 : id-Gost28147-89-CryptoPro-Oscar-1-0-ParamSet | |
1367 | cryptopro 31 7 : id-Gost28147-89-CryptoPro-RIC-1-ParamSet | |
1368 | ||
1369 | cryptopro 32 0 : id-GostR3410-94-TestParamSet | |
1370 | cryptopro 32 2 : id-GostR3410-94-CryptoPro-A-ParamSet | |
1371 | cryptopro 32 3 : id-GostR3410-94-CryptoPro-B-ParamSet | |
1372 | cryptopro 32 4 : id-GostR3410-94-CryptoPro-C-ParamSet | |
1373 | cryptopro 32 5 : id-GostR3410-94-CryptoPro-D-ParamSet | |
1374 | ||
1375 | cryptopro 33 1 : id-GostR3410-94-CryptoPro-XchA-ParamSet | |
1376 | cryptopro 33 2 : id-GostR3410-94-CryptoPro-XchB-ParamSet | |
1377 | cryptopro 33 3 : id-GostR3410-94-CryptoPro-XchC-ParamSet | |
1378 | ||
1379 | cryptopro 35 0 : id-GostR3410-2001-TestParamSet | |
1380 | cryptopro 35 1 : id-GostR3410-2001-CryptoPro-A-ParamSet | |
1381 | cryptopro 35 2 : id-GostR3410-2001-CryptoPro-B-ParamSet | |
1382 | cryptopro 35 3 : id-GostR3410-2001-CryptoPro-C-ParamSet | |
1383 | ||
1384 | cryptopro 36 0 : id-GostR3410-2001-CryptoPro-XchA-ParamSet | |
1385 | cryptopro 36 1 : id-GostR3410-2001-CryptoPro-XchB-ParamSet | |
1386 | ||
362ab3e4 DSH |
1387 | id-GostR3410-94 1 : id-GostR3410-94-a |
1388 | id-GostR3410-94 2 : id-GostR3410-94-aBis | |
1389 | id-GostR3410-94 3 : id-GostR3410-94-b | |
1390 | id-GostR3410-94 4 : id-GostR3410-94-bBis | |
1391 | ||
1392 | # Cryptocom LTD GOST OIDs | |
1393 | ||
228b4e42 | 1394 | cryptocom 1 6 1 : id-Gost28147-89-cc : GOST 28147-89 Cryptocom ParamSet |
de908d63 | 1395 | !Cname id-GostR3410-94-cc |
362ab3e4 | 1396 | cryptocom 1 5 3 : gost94cc : GOST 34.10-94 Cryptocom |
de908d63 | 1397 | !Cname id-GostR3410-2001-cc |
362ab3e4 DSH |
1398 | cryptocom 1 5 4 : gost2001cc : GOST 34.10-2001 Cryptocom |
1399 | ||
d2027098 DSH |
1400 | cryptocom 1 3 3 : id-GostR3411-94-with-GostR3410-94-cc : GOST R 34.11-94 with GOST R 34.10-94 Cryptocom |
1401 | cryptocom 1 3 4 : id-GostR3411-94-with-GostR3410-2001-cc : GOST R 34.11-94 with GOST R 34.10-2001 Cryptocom | |
362ab3e4 DSH |
1402 | |
1403 | cryptocom 1 8 1 : id-GostR3410-2001-ParamSet-cc : GOST R 3410-2001 Parameter Set Cryptocom | |
f3dea9a5 | 1404 | |
31001f81 DB |
1405 | # TC26 GOST OIDs |
1406 | ||
1407 | id-tc26 1 : id-tc26-algorithms | |
1408 | id-tc26-algorithms 1 : id-tc26-sign | |
1409 | !Cname id-GostR3410-2012-256 | |
1410 | id-tc26-sign 1 : gost2012_256: GOST R 34.10-2012 with 256 bit modulus | |
1411 | !Cname id-GostR3410-2012-512 | |
1412 | id-tc26-sign 2 : gost2012_512: GOST R 34.10-2012 with 512 bit modulus | |
1413 | ||
1414 | id-tc26-algorithms 2 : id-tc26-digest | |
1415 | !Cname id-GostR3411-2012-256 | |
1416 | id-tc26-digest 2 : md_gost12_256: GOST R 34.11-2012 with 256 bit hash | |
1417 | !Cname id-GostR3411-2012-512 | |
1418 | id-tc26-digest 3 : md_gost12_512: GOST R 34.11-2012 with 512 bit hash | |
1419 | ||
1420 | id-tc26-algorithms 3 : id-tc26-signwithdigest | |
1421 | id-tc26-signwithdigest 2: id-tc26-signwithdigest-gost3410-2012-256: GOST R 34.10-2012 with GOST R 34.11-2012 (256 bit) | |
1422 | id-tc26-signwithdigest 3: id-tc26-signwithdigest-gost3410-2012-512: GOST R 34.10-2012 with GOST R 34.11-2012 (512 bit) | |
1423 | ||
1424 | id-tc26-algorithms 4 : id-tc26-mac | |
1425 | id-tc26-mac 1 : id-tc26-hmac-gost-3411-2012-256 : HMAC GOST 34.11-2012 256 bit | |
1426 | id-tc26-mac 2 : id-tc26-hmac-gost-3411-2012-512 : HMAC GOST 34.11-2012 512 bit | |
1427 | ||
1428 | id-tc26-algorithms 5 : id-tc26-cipher | |
55fc247a | 1429 | id-tc26-cipher 1 : id-tc26-cipher-gostr3412-2015-magma |
ad16671d DB |
1430 | id-tc26-cipher-gostr3412-2015-magma 1 : magma-ctr-acpkm |
1431 | id-tc26-cipher-gostr3412-2015-magma 2 : magma-ctr-acpkm-omac | |
55fc247a | 1432 | id-tc26-cipher 2 : id-tc26-cipher-gostr3412-2015-kuznyechik |
ad16671d DB |
1433 | id-tc26-cipher-gostr3412-2015-kuznyechik 1 : kuznyechik-ctr-acpkm |
1434 | id-tc26-cipher-gostr3412-2015-kuznyechik 2 : kuznyechik-ctr-acpkm-omac | |
31001f81 DB |
1435 | |
1436 | id-tc26-algorithms 6 : id-tc26-agreement | |
1437 | id-tc26-agreement 1 : id-tc26-agreement-gost-3410-2012-256 | |
1438 | id-tc26-agreement 2 : id-tc26-agreement-gost-3410-2012-512 | |
1439 | ||
55fc247a DB |
1440 | id-tc26-algorithms 7 : id-tc26-wrap |
1441 | id-tc26-wrap 1 : id-tc26-wrap-gostr3412-2015-magma | |
ad16671d | 1442 | id-tc26-wrap-gostr3412-2015-magma 1 : magma-kexp15 |
55fc247a | 1443 | id-tc26-wrap 2 : id-tc26-wrap-gostr3412-2015-kuznyechik |
ad16671d | 1444 | id-tc26-wrap-gostr3412-2015-kuznyechik 1 : kuznyechik-kexp15 |
55fc247a | 1445 | |
31001f81 DB |
1446 | id-tc26 2 : id-tc26-constants |
1447 | ||
1448 | id-tc26-constants 1 : id-tc26-sign-constants | |
3b5e5172 SZ |
1449 | id-tc26-sign-constants 1: id-tc26-gost-3410-2012-256-constants |
1450 | id-tc26-gost-3410-2012-256-constants 1 : id-tc26-gost-3410-2012-256-paramSetA: GOST R 34.10-2012 (256 bit) ParamSet A | |
55fc247a DB |
1451 | id-tc26-gost-3410-2012-256-constants 2 : id-tc26-gost-3410-2012-256-paramSetB: GOST R 34.10-2012 (256 bit) ParamSet B |
1452 | id-tc26-gost-3410-2012-256-constants 3 : id-tc26-gost-3410-2012-256-paramSetC: GOST R 34.10-2012 (256 bit) ParamSet C | |
1453 | id-tc26-gost-3410-2012-256-constants 4 : id-tc26-gost-3410-2012-256-paramSetD: GOST R 34.10-2012 (256 bit) ParamSet D | |
31001f81 DB |
1454 | id-tc26-sign-constants 2: id-tc26-gost-3410-2012-512-constants |
1455 | id-tc26-gost-3410-2012-512-constants 0 : id-tc26-gost-3410-2012-512-paramSetTest: GOST R 34.10-2012 (512 bit) testing parameter set | |
1456 | id-tc26-gost-3410-2012-512-constants 1 : id-tc26-gost-3410-2012-512-paramSetA: GOST R 34.10-2012 (512 bit) ParamSet A | |
1457 | id-tc26-gost-3410-2012-512-constants 2 : id-tc26-gost-3410-2012-512-paramSetB: GOST R 34.10-2012 (512 bit) ParamSet B | |
3b5e5172 | 1458 | id-tc26-gost-3410-2012-512-constants 3 : id-tc26-gost-3410-2012-512-paramSetC: GOST R 34.10-2012 (512 bit) ParamSet C |
31001f81 DB |
1459 | |
1460 | id-tc26-constants 2 : id-tc26-digest-constants | |
1461 | id-tc26-constants 5 : id-tc26-cipher-constants | |
1462 | id-tc26-cipher-constants 1 : id-tc26-gost-28147-constants | |
1463 | id-tc26-gost-28147-constants 1 : id-tc26-gost-28147-param-Z : GOST 28147-89 TC26 parameter set | |
1464 | ||
1465 | member-body 643 3 131 1 1 : INN : INN | |
1466 | member-body 643 100 1 : OGRN : OGRN | |
1467 | member-body 643 100 3 : SNILS : SNILS | |
856198aa | 1468 | member-body 643 100 5 : OGRNIP : OGRNIP |
31001f81 DB |
1469 | member-body 643 100 111 : subjectSignTool : Signing Tool of Subject |
1470 | member-body 643 100 112 : issuerSignTool : Signing Tool of Issuer | |
856198aa DB |
1471 | member-body 643 100 113 : classSignTool : Class of Signing Tool |
1472 | member-body 643 100 113 1 : classSignToolKC1 : Class of Signing Tool KC1 | |
1473 | member-body 643 100 113 2 : classSignToolKC2 : Class of Signing Tool KC2 | |
1474 | member-body 643 100 113 3 : classSignToolKC3 : Class of Signing Tool KC3 | |
1475 | member-body 643 100 113 4 : classSignToolKB1 : Class of Signing Tool KB1 | |
1476 | member-body 643 100 113 5 : classSignToolKB2 : Class of Signing Tool KB2 | |
1477 | member-body 643 100 113 6 : classSignToolKA1 : Class of Signing Tool KA1 | |
31001f81 | 1478 | |
52ee3ed3 | 1479 | #GOST R34.13-2015 Grasshopper "Kuznechik" |
ad16671d DB |
1480 | : kuznyechik-ecb |
1481 | : kuznyechik-ctr | |
1482 | : kuznyechik-ofb | |
1483 | : kuznyechik-cbc | |
1484 | : kuznyechik-cfb | |
1485 | : kuznyechik-mac | |
52ee3ed3 | 1486 | |
55fc247a DB |
1487 | #GOST R34.13-2015 Magma |
1488 | : magma-ecb | |
1489 | : magma-ctr | |
1490 | : magma-ofb | |
1491 | : magma-cbc | |
1492 | : magma-cfb | |
1493 | : magma-mac | |
1494 | ||
f3dea9a5 BM |
1495 | # Definitions for Camellia cipher - CBC MODE |
1496 | ||
1497 | 1 2 392 200011 61 1 1 1 2 : CAMELLIA-128-CBC : camellia-128-cbc | |
1498 | 1 2 392 200011 61 1 1 1 3 : CAMELLIA-192-CBC : camellia-192-cbc | |
1499 | 1 2 392 200011 61 1 1 1 4 : CAMELLIA-256-CBC : camellia-256-cbc | |
e5a4de9e AP |
1500 | 1 2 392 200011 61 1 1 3 2 : id-camellia128-wrap |
1501 | 1 2 392 200011 61 1 1 3 3 : id-camellia192-wrap | |
1502 | 1 2 392 200011 61 1 1 3 4 : id-camellia256-wrap | |
f3dea9a5 BM |
1503 | |
1504 | # Definitions for Camellia cipher - ECB, CFB, OFB MODE | |
1505 | ||
1506 | !Alias ntt-ds 0 3 4401 5 | |
f19a5ff9 | 1507 | !Alias camellia ntt-ds 3 1 9 |
f3dea9a5 BM |
1508 | |
1509 | camellia 1 : CAMELLIA-128-ECB : camellia-128-ecb | |
1510 | !Cname camellia-128-ofb128 | |
1511 | camellia 3 : CAMELLIA-128-OFB : camellia-128-ofb | |
1512 | !Cname camellia-128-cfb128 | |
1513 | camellia 4 : CAMELLIA-128-CFB : camellia-128-cfb | |
c79e1773 AP |
1514 | camellia 6 : CAMELLIA-128-GCM : camellia-128-gcm |
1515 | camellia 7 : CAMELLIA-128-CCM : camellia-128-ccm | |
1516 | camellia 9 : CAMELLIA-128-CTR : camellia-128-ctr | |
1517 | camellia 10 : CAMELLIA-128-CMAC : camellia-128-cmac | |
f3dea9a5 BM |
1518 | |
1519 | camellia 21 : CAMELLIA-192-ECB : camellia-192-ecb | |
1520 | !Cname camellia-192-ofb128 | |
1521 | camellia 23 : CAMELLIA-192-OFB : camellia-192-ofb | |
1522 | !Cname camellia-192-cfb128 | |
1523 | camellia 24 : CAMELLIA-192-CFB : camellia-192-cfb | |
c79e1773 AP |
1524 | camellia 26 : CAMELLIA-192-GCM : camellia-192-gcm |
1525 | camellia 27 : CAMELLIA-192-CCM : camellia-192-ccm | |
1526 | camellia 29 : CAMELLIA-192-CTR : camellia-192-ctr | |
1527 | camellia 30 : CAMELLIA-192-CMAC : camellia-192-cmac | |
f3dea9a5 BM |
1528 | |
1529 | camellia 41 : CAMELLIA-256-ECB : camellia-256-ecb | |
1530 | !Cname camellia-256-ofb128 | |
1531 | camellia 43 : CAMELLIA-256-OFB : camellia-256-ofb | |
1532 | !Cname camellia-256-cfb128 | |
1533 | camellia 44 : CAMELLIA-256-CFB : camellia-256-cfb | |
c79e1773 AP |
1534 | camellia 46 : CAMELLIA-256-GCM : camellia-256-gcm |
1535 | camellia 47 : CAMELLIA-256-CCM : camellia-256-ccm | |
1536 | camellia 49 : CAMELLIA-256-CTR : camellia-256-ctr | |
1537 | camellia 50 : CAMELLIA-256-CMAC : camellia-256-cmac | |
f3dea9a5 BM |
1538 | |
1539 | # There are no OIDs for these modes... | |
1540 | ||
1541 | : CAMELLIA-128-CFB1 : camellia-128-cfb1 | |
1542 | : CAMELLIA-192-CFB1 : camellia-192-cfb1 | |
1543 | : CAMELLIA-256-CFB1 : camellia-256-cfb1 | |
1544 | : CAMELLIA-128-CFB8 : camellia-128-cfb8 | |
1545 | : CAMELLIA-192-CFB8 : camellia-192-cfb8 | |
1546 | : CAMELLIA-256-CFB8 : camellia-256-cfb8 | |
74633553 | 1547 | |
d42d0a4d P |
1548 | # Definitions for ARIA cipher |
1549 | ||
1550 | !Alias aria 1 2 410 200046 1 1 | |
1551 | aria 1 : ARIA-128-ECB : aria-128-ecb | |
1552 | aria 2 : ARIA-128-CBC : aria-128-cbc | |
1553 | !Cname aria-128-cfb128 | |
1554 | aria 3 : ARIA-128-CFB : aria-128-cfb | |
1555 | !Cname aria-128-ofb128 | |
1556 | aria 4 : ARIA-128-OFB : aria-128-ofb | |
1557 | aria 5 : ARIA-128-CTR : aria-128-ctr | |
1558 | ||
1559 | aria 6 : ARIA-192-ECB : aria-192-ecb | |
1560 | aria 7 : ARIA-192-CBC : aria-192-cbc | |
1561 | !Cname aria-192-cfb128 | |
1562 | aria 8 : ARIA-192-CFB : aria-192-cfb | |
1563 | !Cname aria-192-ofb128 | |
1564 | aria 9 : ARIA-192-OFB : aria-192-ofb | |
1565 | aria 10 : ARIA-192-CTR : aria-192-ctr | |
1566 | ||
1567 | aria 11 : ARIA-256-ECB : aria-256-ecb | |
1568 | aria 12 : ARIA-256-CBC : aria-256-cbc | |
1569 | !Cname aria-256-cfb128 | |
1570 | aria 13 : ARIA-256-CFB : aria-256-cfb | |
1571 | !Cname aria-256-ofb128 | |
1572 | aria 14 : ARIA-256-OFB : aria-256-ofb | |
1573 | aria 15 : ARIA-256-CTR : aria-256-ctr | |
1574 | ||
1575 | # There are no OIDs for these ARIA modes... | |
1576 | : ARIA-128-CFB1 : aria-128-cfb1 | |
1577 | : ARIA-192-CFB1 : aria-192-cfb1 | |
1578 | : ARIA-256-CFB1 : aria-256-cfb1 | |
1579 | : ARIA-128-CFB8 : aria-128-cfb8 | |
1580 | : ARIA-192-CFB8 : aria-192-cfb8 | |
1581 | : ARIA-256-CFB8 : aria-256-cfb8 | |
1582 | ||
bc326738 JS |
1583 | aria 37 : ARIA-128-CCM : aria-128-ccm |
1584 | aria 38 : ARIA-192-CCM : aria-192-ccm | |
1585 | aria 39 : ARIA-256-CCM : aria-256-ccm | |
1586 | aria 34 : ARIA-128-GCM : aria-128-gcm | |
1587 | aria 35 : ARIA-192-GCM : aria-192-gcm | |
1588 | aria 36 : ARIA-256-GCM : aria-256-gcm | |
1589 | ||
96afc1cf BM |
1590 | # Definitions for SEED cipher - ECB, CBC, OFB mode |
1591 | ||
1592 | member-body 410 200004 : KISA : kisa | |
1593 | kisa 1 3 : SEED-ECB : seed-ecb | |
1594 | kisa 1 4 : SEED-CBC : seed-cbc | |
1595 | !Cname seed-cfb128 | |
1596 | kisa 1 5 : SEED-CFB : seed-cfb | |
1597 | !Cname seed-ofb128 | |
1598 | kisa 1 6 : SEED-OFB : seed-ofb | |
1599 | ||
f19a5ff9 RT |
1600 | |
1601 | # Definitions for SM4 cipher | |
1602 | ||
f19a5ff9 RT |
1603 | sm-scheme 104 1 : SM4-ECB : sm4-ecb |
1604 | sm-scheme 104 2 : SM4-CBC : sm4-cbc | |
1605 | !Cname sm4-ofb128 | |
1606 | sm-scheme 104 3 : SM4-OFB : sm4-ofb | |
1607 | !Cname sm4-cfb128 | |
1608 | sm-scheme 104 4 : SM4-CFB : sm4-cfb | |
1609 | sm-scheme 104 5 : SM4-CFB1 : sm4-cfb1 | |
1610 | sm-scheme 104 6 : SM4-CFB8 : sm4-cfb8 | |
1611 | sm-scheme 104 7 : SM4-CTR : sm4-ctr | |
a596d38a TZ |
1612 | sm-scheme 104 8 : SM4-GCM : sm4-gcm |
1613 | sm-scheme 104 9 : SM4-CCM : sm4-ccm | |
f19a5ff9 | 1614 | |
74633553 DSH |
1615 | # There is no OID that just denotes "HMAC" oddly enough... |
1616 | ||
1617 | : HMAC : hmac | |
c8ef656d DSH |
1618 | # Nor CMAC either |
1619 | : CMAC : cmac | |
c608171d AP |
1620 | |
1621 | # Synthetic composite ciphersuites | |
1622 | : RC4-HMAC-MD5 : rc4-hmac-md5 | |
1623 | : AES-128-CBC-HMAC-SHA1 : aes-128-cbc-hmac-sha1 | |
1624 | : AES-192-CBC-HMAC-SHA1 : aes-192-cbc-hmac-sha1 | |
1625 | : AES-256-CBC-HMAC-SHA1 : aes-256-cbc-hmac-sha1 | |
8a97a330 AP |
1626 | : AES-128-CBC-HMAC-SHA256 : aes-128-cbc-hmac-sha256 |
1627 | : AES-192-CBC-HMAC-SHA256 : aes-192-cbc-hmac-sha256 | |
1628 | : AES-256-CBC-HMAC-SHA256 : aes-256-cbc-hmac-sha256 | |
72bb2f64 AP |
1629 | : ChaCha20-Poly1305 : chacha20-poly1305 |
1630 | : ChaCha20 : chacha20 | |
afb14cda DSH |
1631 | |
1632 | ISO-US 10046 2 1 : dhpublicnumber : X9.42 DH | |
b36bab78 DSH |
1633 | |
1634 | # RFC 5639 curve OIDs (see http://www.ietf.org/rfc/rfc5639.txt) | |
1635 | # versionOne OBJECT IDENTIFIER ::= { | |
46f4e1be | 1636 | # iso(1) identified-organization(3) teletrust(36) algorithm(3) |
b36bab78 DSH |
1637 | # signature-algorithm(3) ecSign(2) ecStdCurvesAndGeneration(8) |
1638 | # ellipticCurve(1) 1 } | |
1639 | 1 3 36 3 3 2 8 1 1 1 : brainpoolP160r1 | |
1640 | 1 3 36 3 3 2 8 1 1 2 : brainpoolP160t1 | |
1641 | 1 3 36 3 3 2 8 1 1 3 : brainpoolP192r1 | |
1642 | 1 3 36 3 3 2 8 1 1 4 : brainpoolP192t1 | |
1643 | 1 3 36 3 3 2 8 1 1 5 : brainpoolP224r1 | |
1644 | 1 3 36 3 3 2 8 1 1 6 : brainpoolP224t1 | |
1645 | 1 3 36 3 3 2 8 1 1 7 : brainpoolP256r1 | |
c9ee6e36 MC |
1646 | # Alternate NID to represent the TLSv1.3 brainpoolP256r1 group |
1647 | : brainpoolP256r1tls13 | |
b36bab78 DSH |
1648 | 1 3 36 3 3 2 8 1 1 8 : brainpoolP256t1 |
1649 | 1 3 36 3 3 2 8 1 1 9 : brainpoolP320r1 | |
1650 | 1 3 36 3 3 2 8 1 1 10 : brainpoolP320t1 | |
1651 | 1 3 36 3 3 2 8 1 1 11 : brainpoolP384r1 | |
c9ee6e36 MC |
1652 | # Alternate NID to represent the TLSv1.3 brainpoolP384r1 group |
1653 | : brainpoolP384r1tls13 | |
b36bab78 DSH |
1654 | 1 3 36 3 3 2 8 1 1 12 : brainpoolP384t1 |
1655 | 1 3 36 3 3 2 8 1 1 13 : brainpoolP512r1 | |
c9ee6e36 MC |
1656 | # Alternate NID to represent the TLSv1.3 brainpoolP512r1 group |
1657 | : brainpoolP512r1tls13 | |
f19a5ff9 | 1658 | 1 3 36 3 3 2 8 1 1 14 : brainpoolP512t1 |
6af440ce DSH |
1659 | |
1660 | # ECDH schemes from RFC5753 | |
1661 | !Alias x9-63-scheme 1 3 133 16 840 63 0 | |
1662 | !Alias secg-scheme certicom-arc 1 | |
1663 | ||
1664 | x9-63-scheme 2 : dhSinglePass-stdDH-sha1kdf-scheme | |
1665 | secg-scheme 11 0 : dhSinglePass-stdDH-sha224kdf-scheme | |
1666 | secg-scheme 11 1 : dhSinglePass-stdDH-sha256kdf-scheme | |
1667 | secg-scheme 11 2 : dhSinglePass-stdDH-sha384kdf-scheme | |
1668 | secg-scheme 11 3 : dhSinglePass-stdDH-sha512kdf-scheme | |
1669 | ||
1670 | x9-63-scheme 3 : dhSinglePass-cofactorDH-sha1kdf-scheme | |
1671 | secg-scheme 14 0 : dhSinglePass-cofactorDH-sha224kdf-scheme | |
1672 | secg-scheme 14 1 : dhSinglePass-cofactorDH-sha256kdf-scheme | |
1673 | secg-scheme 14 2 : dhSinglePass-cofactorDH-sha384kdf-scheme | |
1674 | secg-scheme 14 3 : dhSinglePass-cofactorDH-sha512kdf-scheme | |
1675 | # NIDs for use with lookup tables. | |
1676 | : dh-std-kdf | |
1677 | : dh-cofactor-kdf | |
dcfe8df1 RS |
1678 | |
1679 | # RFC 6962 Extension OIDs (see http://www.ietf.org/rfc/rfc6962.txt) | |
1680 | 1 3 6 1 4 1 11129 2 4 2 : ct_precert_scts : CT Precertificate SCTs | |
1681 | 1 3 6 1 4 1 11129 2 4 3 : ct_precert_poison : CT Precertificate Poison | |
1682 | 1 3 6 1 4 1 11129 2 4 4 : ct_precert_signer : CT Precertificate Signer | |
1683 | 1 3 6 1 4 1 11129 2 4 5 : ct_cert_scts : CT Certificate SCTs | |
52f71f81 RS |
1684 | |
1685 | # CABForum EV SSL Certificate Guidelines | |
1686 | # (see https://cabforum.org/extended-validation/) | |
1687 | # OIDs for Subject Jurisdiction of Incorporation or Registration | |
1688 | 1 3 6 1 4 1 311 60 2 1 1 : jurisdictionL : jurisdictionLocalityName | |
1689 | 1 3 6 1 4 1 311 60 2 1 2 : jurisdictionST : jurisdictionStateOrProvinceName | |
1690 | 1 3 6 1 4 1 311 60 2 1 3 : jurisdictionC : jurisdictionCountryName | |
96b96d6c DSH |
1691 | |
1692 | # SCRYPT algorithm | |
cefa762e JB |
1693 | !Cname id-scrypt |
1694 | 1 3 6 1 4 1 11591 4 11 : id-scrypt : scrypt | |
1eff3485 DSH |
1695 | |
1696 | # NID for TLS1 PRF | |
1697 | : TLS1-PRF : tls1-prf | |
d9f77726 | 1698 | |
aacfb134 AG |
1699 | # NID for HKDF |
1700 | : HKDF : hkdf | |
1701 | ||
8d76481b SS |
1702 | # NID for SSHKDF |
1703 | : SSHKDF : sshkdf | |
1704 | ||
9537fe57 SL |
1705 | # NID for SSKDF |
1706 | : SSKDF : sskdf | |
1aec7716 SL |
1707 | # NID for X942KDF |
1708 | : X942KDF : x942kdf | |
9537fe57 | 1709 | |
8bbeaaa4 SL |
1710 | # NID for X963-2001 KDF |
1711 | : X963KDF : x963kdf | |
1712 | ||
d9f77726 RS |
1713 | # RFC 4556 |
1714 | 1 3 6 1 5 2 3 : id-pkinit | |
1715 | id-pkinit 4 : pkInitClientAuth : PKINIT Client Auth | |
1716 | id-pkinit 5 : pkInitKDC : Signing KDC Response | |
d8489448 | 1717 | |
d0d0e8a7 | 1718 | # From RFC8410 |
4950f888 DSH |
1719 | 1 3 101 110 : X25519 |
1720 | 1 3 101 111 : X448 | |
9691a749 DSH |
1721 | 1 3 101 112 : ED25519 |
1722 | 1 3 101 113 : ED448 | |
1723 | ||
3ec13237 TS |
1724 | |
1725 | # NIDs for cipher key exchange | |
1726 | : KxRSA : kx-rsa | |
1727 | : KxECDHE : kx-ecdhe | |
1728 | : KxDHE : kx-dhe | |
1729 | : KxECDHE-PSK : kx-ecdhe-psk | |
1730 | : KxDHE-PSK : kx-dhe-psk | |
1731 | : KxRSA_PSK : kx-rsa-psk | |
1732 | : KxPSK : kx-psk | |
1733 | : KxSRP : kx-srp | |
1734 | : KxGOST : kx-gost | |
0e139a02 | 1735 | : KxGOST18 : kx-gost18 |
7114af30 | 1736 | : KxANY : kx-any |
3ec13237 TS |
1737 | |
1738 | # NIDs for cipher authentication | |
1739 | : AuthRSA : auth-rsa | |
1740 | : AuthECDSA : auth-ecdsa | |
1741 | : AuthPSK : auth-psk | |
1742 | : AuthDSS : auth-dss | |
1743 | : AuthGOST01 : auth-gost01 | |
1744 | : AuthGOST12 : auth-gost12 | |
1745 | : AuthSRP : auth-srp | |
1746 | : AuthNULL : auth-null | |
7114af30 | 1747 | : AuthANY : auth-any |
52ad5b60 TS |
1748 | # NID for Poly1305 |
1749 | : Poly1305 : poly1305 | |
3f5616d7 TS |
1750 | # NID for SipHash |
1751 | : SipHash : siphash | |
b6eae147 DSH |
1752 | # NIDs for RFC7919 DH parameters |
1753 | : ffdhe2048 | |
1754 | : ffdhe3072 | |
1755 | : ffdhe4096 | |
1756 | : ffdhe6144 | |
1757 | : ffdhe8192 | |
ca2bf555 SL |
1758 | # NIDs for RFC3526 DH parameters |
1759 | : modp_1536 | |
1760 | : modp_2048 | |
1761 | : modp_3072 | |
1762 | : modp_4096 | |
1763 | : modp_6144 | |
1764 | : modp_8192 | |
e45b4dd2 | 1765 | |
1766 | # OIDs for DSTU-4145/DSTU-7564 (http://zakon2.rada.gov.ua/laws/show/z0423-17) | |
1767 | ||
1768 | # DSTU OIDs | |
1769 | member-body 804 : ISO-UA | |
1770 | ISO-UA 2 1 1 1 : ua-pki | |
1771 | ua-pki 1 1 1 : dstu28147 : DSTU Gost 28147-2009 | |
1772 | dstu28147 2 : dstu28147-ofb : DSTU Gost 28147-2009 OFB mode | |
1773 | dstu28147 3 : dstu28147-cfb : DSTU Gost 28147-2009 CFB mode | |
1774 | dstu28147 5 : dstu28147-wrap : DSTU Gost 28147-2009 key wrap | |
1775 | ||
1776 | ua-pki 1 1 2 : hmacWithDstu34311 : HMAC DSTU Gost 34311-95 | |
1777 | ua-pki 1 2 1 : dstu34311 : DSTU Gost 34311-95 | |
1778 | ||
1779 | ua-pki 1 3 1 1 : dstu4145le : DSTU 4145-2002 little endian | |
1780 | dstu4145le 1 1 : dstu4145be : DSTU 4145-2002 big endian | |
1781 | ||
1782 | # 1.2.804. 2.1.1.1 1.3.1.1 .2.6 | |
1783 | # UA ua-pki 4145 le | |
1784 | # DSTU named curves | |
1785 | dstu4145le 2 0 : uacurve0 : DSTU curve 0 | |
1786 | dstu4145le 2 1 : uacurve1 : DSTU curve 1 | |
1787 | dstu4145le 2 2 : uacurve2 : DSTU curve 2 | |
1788 | dstu4145le 2 3 : uacurve3 : DSTU curve 3 | |
1789 | dstu4145le 2 4 : uacurve4 : DSTU curve 4 | |
1790 | dstu4145le 2 5 : uacurve5 : DSTU curve 5 | |
1791 | dstu4145le 2 6 : uacurve6 : DSTU curve 6 | |
1792 | dstu4145le 2 7 : uacurve7 : DSTU curve 7 | |
1793 | dstu4145le 2 8 : uacurve8 : DSTU curve 8 | |
1794 | dstu4145le 2 9 : uacurve9 : DSTU curve 9 | |
b1ceb439 TS |
1795 | # NID for AES-SIV |
1796 | : AES-128-SIV : aes-128-siv | |
1797 | : AES-192-SIV : aes-192-siv | |
1798 | : AES-256-SIV : aes-256-siv | |
e869c867 GW |
1799 | |
1800 | ||
1801 | !Cname oracle | |
1802 | joint-iso-itu-t 16 840 1 113894 : oracle-organization : Oracle organization | |
1803 | # Jdk trustedKeyUsage attribute | |
1804 | oracle 746875 1 1 : oracle-jdk-trustedkeyusage : Trusted key usage (Oracle) | |
12e96a23 | 1805 | |
caf9317d | 1806 | # NID for compression |
12e96a23 | 1807 | : brotli : Brotli compression |
caf9317d | 1808 | : zstd : Zstandard compression |