Expand description
§Cryptographic Message Syntax
rasn-cms is an implementation of the data types defined in IETF
RFC 4108, RFC 5083, RFC 5084, and RFC 5652. Also known as
Cryptographic Message Syntax (CMS) or PKCS#7.
This does not provide an implementation of a CMS generator or validator, instead
rasn-cms provides an implementation of the underlying data types used to
decode and encode the CMS structures from/to DER or BER.
Modules§
- algorithms
- Algorithms used with CMS.
- authenticode
- Windows Authenticode Portable Executable Signature Format
- firmware_
wrapper - Firmware Package Wrappers
- pkcs7_
compat - PKCS7 compatibility module.
Structs§
- Algorithm
Identifier - Identifies what algorithm was used, along with any parameters used as input.
- Attribute
- Auth
Enveloped Data - Authenticated
Data - AuthenticatedData represents an authenticated-data content type
- Certificate
- An X.509 certificate
- Certificate
List - A signed list of revoked certificates.
- Content
Info - ContentInfo encapsulates a single identified content type, and the identified type may provide further encapsulation.
- Digested
Data - DigestedData represents a digested-data content type
- Encapsulated
Content Info - The content is represented in the type EncapsulatedContentInfo
- Encrypted
Content Info - EncryptedContentInfo is the encrypted content information
- Encrypted
Data - EncryptedData represents an encrypted-data content type
- Enveloped
Data - EnvelopedData represents an enveloped-data content type
- Extended
Certificate - Extended
Certificate Info - Issuer
AndSerial Number - The IssuerAndSerialNumber type identifies a certificate, and thereby an entity and a public key, by the distinguished name of the certificate issuer and an issuer-specific certificate serial number.
- KekIdentifier
- KekIdentifier specifies a symmetric key-encryption key that was previously distributed to the sender and one or more recipients.
- KekRecipient
Info - Recipient information using previously distributed symmetric keys is represented in the type KEKRecipientInfo.
- KeyAgree
Recipient Info - Recipient information using key agreement is represented in the type KeyAgreeRecipientInfo.
- KeyTrans
Recipient Info - Per-recipient information using key transport is represented in the type KeyTransRecipientInfo. Each instance of KeyTransRecipientInfo transfers the content-encryption key to one recipient.
- Originator
Info - OriginatorInfo optionally provides information about the originator. It is present only if required by the key management algorithm.
- Originator
Public Key - The OriginatorPublicKey alternative includes the algorithm identifier and sender’s key agreement public key.
- Other
Certificate Format - OtherCertificateFormat represents a custom certificate format
- Other
KeyAttribute - Additional information used by the recipient to determine the key-encryption key used by the sender.
- Other
Recipient Info - Recipient information for additional key management techniques are represented in the type OtherRecipientInfo.
- Other
Revocation Info Format - The OtherRevocationInfoFormat alternative is provided to support any other revocation information format without further modifications to the CMS.
- Password
Recipient Info - Recipient information using a password or shared secret value is represented in the type PasswordRecipientInfo.
- Recipient
Encrypted Key - RecipientEncryptedKey includes a recipient identifier and encrypted key for one or more recipients.
- Recipient
KeyIdentifier - RecipientKeyIdentifier identifies the recipient’s key.
- Signed
Data - SignedData represents a signed-data content type
- Signer
Info - Per-signer information is represented in the type SignerInfo
Enums§
- Certificate
Choices - The `CertificateChoices`` type contains options for certificate formats.
- Extended
Certificate OrCertificate - KeyAgree
Recipient Identifier - KeyAgreeRecipientIdentifier is a CHOICE with two alternatives.
- Name
- Originator
Identifier OrKey - OriginatorIdentifierOrKey is a CHOICE with three alternatives specifying the sender’s key agreement public key.
- Recipient
Identifier - RecipientIdentifier specifies the recipient’s certificate or key that was used by the sender to protect the content-encryption key.
- Recipient
Info - RecipientInfo is a per-recipient information.
- Revocation
Info Choice - The RevocationInfoChoice type gives a revocation status information alternatives.
- Signer
Identifier - SignerIdentifier data type represents the choice of signer identifications
Constants§
- CONTENT_
AUTHENTICATED_ DATA - OID of AuthenticatedData content type
- CONTENT_
DATA - OID of Data content type
- CONTENT_
DIGESTED_ DATA - OID of DigestedData content type
- CONTENT_
ENCRYPTED_ DATA - OID of EncryptedData content type
- CONTENT_
ENVELOPED_ DATA - OID of EnvelopedData content type
- CONTENT_
INFO - OID of top-level CMS ContentInfo
- CONTENT_
SIGNED_ DATA - OID of SignedData content type
- CONTENT_
TYPE - OID of CMS ContentType
- COUNTER_
SIGNATURE - OID of CounterSignature
- MESSAGE_
DIGEST - OID of MessageDigest
- SIGNING_
TIME - OID of SigningTime
Type Aliases§
- Auth
Attributes - Certificate
Serial Number - Certificate
Set - CmsVersion
- Content
Encryption Algorithm Identifier - Content
Type - Digest
- Digest
Algorithm Identifier - Digest
Algorithm Identifiers - Encrypted
Content - Encrypted
Key - KeyDerivation
Algorithm Identifier - KeyEncryption
Algorithm Identifier - Message
Authentication Code - Message
Authentication Code Algorithm - Recipient
Encrypted Keys - Recipient
Infos - Revocation
Info Choices - Signature
- Signature
Algorithm Identifier - Signature
Value - Signed
Attributes - Signer
Infos - Subject
KeyIdentifier - Unauth
Attributes - Unprotected
Attributes - Unsigned
Attributes - User
Keying Material