Hi all,
I have 2 versions of a DER-encoded pkcs7-enveloped-data and I would
like to know which one is correct:
I have attached their printable parsed form and they only differ
in one point, namely at the
EnvelopedData.encryptedContentInfo.encryptedContent component:
- the verExpl.txt encodes it as
[0] {
368 04 1312: OCTET STRING
: FE FE 9F 9C C5 C7 FC 28 FD B0 BA 4B 08 AF AD 3C
: E3 05 A6 89 FF 8A 9A C7 48 FC CC 7B 98 31 DA 3D
: F0 6A 82 6B 7A 47 32 53 F5 C6 F1 39 6B 77 C6 FE
: 8E B0 01 F4 15 9C 51 4A 72 12 71 51 5C 10 BC D4
: 9E F4 AD E5 B3 B1 B9 7F D5 26 BD E1 44 13 24 DD
: 30 A1 32 63 2D 65 B6 71 64 09 52 32 0D FB 6A 65
: 8F 71 86 72 C3 13 61 37 F4 EF E6 73 92 DB F5 7E
: 23 79 82 64 C6 4A 7B 3F BD 3A F6 6B C9 EE A9 14
: [ Another 1184 bytes skipped ]
: }
while the verImpl.txt encodes it as
[0]
: 19 83 FD 11 13 B8 20 3C ED C9 CB B7 3F 06 97 3B
: 46 C7 03 09 FE 24 B8 7B 1D B7 DD F6 05 68 81 85
: B4 21 70 95 6B AB A7 33 54 77 00 F5 D7 CC FC 5F
: 18 47 7E 63 41 94 22 A9 C7 5C 56 09 89 49 BD C7
: 67 D8 9B 48 82 B7 4B 64 F8 D9 11 F3 F8 AE 04 81
: E7 C1 4F 37 F0 37 36 D0 A3 B1 A9 DB 67 09 C1 64
: B6 E0 4B 2D 2A D6 47 2C 24 49 D5 7A 5E 4B 6F FF
: 0E 6E 8B D8 8E 58 85 E9 76 41 02 7D A1 A3 D4 AD
: [ Another 1192 bytes skipped ]
If I check the grammar of that objetct ([0] IMPLICIT EncryptedContent
OPTIONAL),
it seems that it is the verImpl.txt that is correct since IMPLICIT tagging
is used.
Am I correct?
Pierre De Boeck
Sr System Engineer
Cipherquest
email:[EMAIL PROTECTED]
BEGIN:VCARD
VERSION:2.1
N:De Boeck;Pierre
FN:Cipherquest
ORG:Cipherquest
TITLE:Sr System Engineer
TEL;WORK;VOICE:+352 (264) 78201
TEL;HOME;VOICE:+32 2 759 44 96
TEL;CELL;VOICE:+32 0479846599
TEL;WORK;FAX:+352 (264) 78202
ADR;WORK:;;Rue de l'eau 22;Luxembourg;;1449;Luxembourg
LABEL;WORK;ENCODING=QUOTED-PRINTABLE:Rue de l'eau 22=0D=0ALuxembourg 1449=0D=0ALuxembourg
KEY;X509;ENCODING=BASE64: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KEY;X509;ENCODING=BASE64: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EMAIL;PREF;INTERNET:[EMAIL PROTECTED]
REV:20030429T180548Z
END:VCARD
0 30 NDEF: SEQUENCE {
2 06 9: OBJECT IDENTIFIER envelopedData (1 2 840 113549 1 7 3)
13 A0 NDEF: [0] {
15 30 NDEF: SEQUENCE {
17 02 1: INTEGER 0
20 31 307: SET {
24 30 303: SEQUENCE {
28 02 1: INTEGER 0
31 30 151: SEQUENCE {
34 30 136: SEQUENCE {
37 31 11: SET {
39 30 9: SEQUENCE {
41 06 3: OBJECT IDENTIFIER countryName (2 5 4 6)
46 13 2: PrintableString 'US'
: }
: }
50 31 14: SET {
52 30 12: SEQUENCE {
54 06 3: OBJECT IDENTIFIER stateOrProvinceName (2 5 4 8)
59 13 5: PrintableString 'Texas'
: }
: }
66 31 19: SET {
68 30 17: SEQUENCE {
70 06 3: OBJECT IDENTIFIER localityName (2 5 4 7)
75 13 10: PrintableString 'Fort Worth'
: }
: }
87 31 12: SET {
89 30 10: SEQUENCE {
91 06 3: OBJECT IDENTIFIER organizationName (2 5 4 10)
96 13 3: PrintableString 'DGI'
: }
: }
101 31 12: SET {
103 30 10: SEQUENCE {
105 06 3: OBJECT IDENTIFIER
: organizationalUnitName (2 5 4 11)
110 13 3: PrintableString 'DGI'
: }
: }
115 31 37: SET {
117 30 35: SEQUENCE {
119 06 9: OBJECT IDENTIFIER
: emailAddress (1 2 840 113549 1 9 1)
130 16 22: IA5String '[EMAIL PROTECTED]'
: }
: }
154 31 17: SET {
156 30 15: SEQUENCE {
158 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
163 13 8: PrintableString 'DGI-Cleo'
: }
: }
: }
173 02 10: INTEGER
: 01 60 9A 34 89 47 6C 9D 0E 91
: }
185 30 13: SEQUENCE {
187 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1)
198 05 0: NULL
: }
200 04 128: OCTET STRING
: A5 91 AA 8A 7E 00 9D 73 B9 8B 67 ED CF 6F 38 04
: D8 B0 9A 4D 78 AF DB D0 20 12 81 44 7F F0 8B 01
: 18 6E F3 12 AA CE FA 2A FF D8 D3 DF C3 F8 78 5B
: 2A 9D EE F4 96 56 5E A5 59 F1 9B E2 B2 CA A5 98
: 34 65 BC 55 0E E3 BA D7 D5 4D BD D8 4D 05 A7 31
: 84 1E D9 2D 77 F0 DB 5D FE 1A 08 5B 69 1E 09 1E
: 4E 7B 08 92 57 F0 64 78 05 D7 38 54 CE 5D 29 0F
: 80 60 B9 E8 0B 69 73 BA 35 01 9C 69 96 9C CB 96
: }
: }
331 30 NDEF: SEQUENCE {
333 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
344 30 20: SEQUENCE {
346 06 8: OBJECT IDENTIFIER des-EDE3-CBC (1 2 840 113549 3 7)
356 04 8: OCTET STRING
: 78 5F F2 DD 23 85 F9 3C
: }
366 A0 NDEF: [0] {
368 04 1312: OCTET STRING
: FE FE 9F 9C C5 C7 FC 28 FD B0 BA 4B 08 AF AD 3C
: E3 05 A6 89 FF 8A 9A C7 48 FC CC 7B 98 31 DA 3D
: F0 6A 82 6B 7A 47 32 53 F5 C6 F1 39 6B 77 C6 FE
: 8E B0 01 F4 15 9C 51 4A 72 12 71 51 5C 10 BC D4
: 9E F4 AD E5 B3 B1 B9 7F D5 26 BD E1 44 13 24 DD
: 30 A1 32 63 2D 65 B6 71 64 09 52 32 0D FB 6A 65
: 8F 71 86 72 C3 13 61 37 F4 EF E6 73 92 DB F5 7E
: 23 79 82 64 C6 4A 7B 3F BD 3A F6 6B C9 EE A9 14
: [ Another 1184 bytes skipped ]
: }
: }
: }
: }
: }
0 30 1694: SEQUENCE {
4 06 9: OBJECT IDENTIFIER envelopedData (1 2 840 113549 1 7 3)
15 A0 1679: [0] {
19 30 1675: SEQUENCE {
23 02 1: INTEGER 0
26 31 307: SET {
30 30 303: SEQUENCE {
34 02 1: INTEGER 0
37 30 151: SEQUENCE {
40 30 136: SEQUENCE {
43 31 11: SET {
45 30 9: SEQUENCE {
47 06 3: OBJECT IDENTIFIER countryName (2 5 4 6)
52 13 2: PrintableString 'US'
: }
: }
56 31 14: SET {
58 30 12: SEQUENCE {
60 06 3: OBJECT IDENTIFIER stateOrProvinceName (2 5 4 8)
65 13 5: PrintableString 'Texas'
: }
: }
72 31 19: SET {
74 30 17: SEQUENCE {
76 06 3: OBJECT IDENTIFIER localityName (2 5 4 7)
81 13 10: PrintableString 'Fort Worth'
: }
: }
93 31 12: SET {
95 30 10: SEQUENCE {
97 06 3: OBJECT IDENTIFIER organizationName (2 5 4 10)
102 13 3: PrintableString 'DGI'
: }
: }
107 31 12: SET {
109 30 10: SEQUENCE {
111 06 3: OBJECT IDENTIFIER
: organizationalUnitName (2 5 4 11)
116 13 3: PrintableString 'DGI'
: }
: }
121 31 37: SET {
123 30 35: SEQUENCE {
125 06 9: OBJECT IDENTIFIER
: emailAddress (1 2 840 113549 1 9 1)
136 16 22: IA5String '[EMAIL PROTECTED]'
: }
: }
160 31 17: SET {
162 30 15: SEQUENCE {
164 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
169 13 8: PrintableString 'DGI-Cleo'
: }
: }
: }
179 02 10: INTEGER
: 01 60 9A 34 89 47 6C 9D 0E 91
: }
191 30 13: SEQUENCE {
193 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1)
204 05 0: NULL
: }
206 04 128: OCTET STRING
: AF B2 3C 23 E1 E4 24 EA C7 8C AA 7C A4 AF 79 D1
: 3A 13 FB 45 CE 68 9D FA 03 E0 47 87 69 B8 BD D8
: 63 C8 A0 C1 B7 0B FE 8E 40 71 87 1A 91 1C 54 3D
: 8C E8 EE 70 38 6A FE 56 BB C7 81 D7 D7 CE CD F4
: A8 EF A5 A0 B0 45 48 02 3D AD 0C 83 30 37 2D 39
: 5F F3 F5 0C 99 4D 5B 15 4A 82 86 87 94 56 28 FA
: 0B 66 21 33 A8 BF A6 46 FE 5F 2D CE 67 0A 76 47
: 6C 28 C6 87 28 0A EB 74 72 34 F8 C7 38 FE E8 A1
: }
: }
337 30 1357: SEQUENCE {
341 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
352 30 20: SEQUENCE {
354 06 8: OBJECT IDENTIFIER des-EDE3-CBC (1 2 840 113549 3 7)
364 04 8: OCTET STRING
: BE 64 DF 94 1D 46 0F 8C
: }
374 80 1320: [0]
: 19 83 FD 11 13 B8 20 3C ED C9 CB B7 3F 06 97 3B
: 46 C7 03 09 FE 24 B8 7B 1D B7 DD F6 05 68 81 85
: B4 21 70 95 6B AB A7 33 54 77 00 F5 D7 CC FC 5F
: 18 47 7E 63 41 94 22 A9 C7 5C 56 09 89 49 BD C7
: 67 D8 9B 48 82 B7 4B 64 F8 D9 11 F3 F8 AE 04 81
: E7 C1 4F 37 F0 37 36 D0 A3 B1 A9 DB 67 09 C1 64
: B6 E0 4B 2D 2A D6 47 2C 24 49 D5 7A 5E 4B 6F FF
: 0E 6E 8B D8 8E 58 85 E9 76 41 02 7D A1 A3 D4 AD
: [ Another 1192 bytes skipped ]
: }
: }
: }
: }
