ISISMTTObjectIdentifiers.java revision 6e736056d64d0e33b26cf9f7c4e351b496241fde
1package org.bouncycastle.asn1.isismtt; 2 3import org.bouncycastle.asn1.ASN1ObjectIdentifier; 4 5public interface ISISMTTObjectIdentifiers 6{ 7 8 static final ASN1ObjectIdentifier id_isismtt = new ASN1ObjectIdentifier("1.3.36.8"); 9 10 static final ASN1ObjectIdentifier id_isismtt_cp = id_isismtt.branch("1"); 11 12 /** 13 * The id-isismtt-cp-accredited OID indicates that the certificate is a 14 * qualified certificate according to Directive 1999/93/EC of the European 15 * Parliament and of the Council of 13 December 1999 on a Community 16 * Framework for Electronic Signatures, which additionally conforms the 17 * special requirements of the SigG and has been issued by an accredited CA. 18 */ 19 static final ASN1ObjectIdentifier id_isismtt_cp_accredited = id_isismtt_cp.branch("1"); 20 21 static final ASN1ObjectIdentifier id_isismtt_at = id_isismtt.branch("3"); 22 23 /** 24 * Certificate extensionDate of certificate generation 25 * 26 * <pre> 27 * DateOfCertGenSyntax ::= GeneralizedTime 28 * </pre> 29 */ 30 static final ASN1ObjectIdentifier id_isismtt_at_dateOfCertGen = id_isismtt_at.branch("1"); 31 32 /** 33 * Attribute to indicate that the certificate holder may sign in the name of 34 * a third person. May also be used as extension in a certificate. 35 */ 36 static final ASN1ObjectIdentifier id_isismtt_at_procuration = id_isismtt_at.branch("2"); 37 38 /** 39 * Attribute to indicate admissions to certain professions. May be used as 40 * attribute in attribute certificate or as extension in a certificate 41 */ 42 static final ASN1ObjectIdentifier id_isismtt_at_admission = id_isismtt_at.branch("3"); 43 44 /** 45 * Monetary limit for transactions. The QcEuMonetaryLimit QC statement MUST 46 * be used in new certificates in place of the extension/attribute 47 * MonetaryLimit since January 1, 2004. For the sake of backward 48 * compatibility with certificates already in use, SigG conforming 49 * components MUST support MonetaryLimit (as well as QcEuLimitValue). 50 */ 51 static final ASN1ObjectIdentifier id_isismtt_at_monetaryLimit = id_isismtt_at.branch("4"); 52 53 /** 54 * A declaration of majority. May be used as attribute in attribute 55 * certificate or as extension in a certificate 56 */ 57 static final ASN1ObjectIdentifier id_isismtt_at_declarationOfMajority = id_isismtt_at.branch("5"); 58 59 /** 60 * 61 * Serial number of the smart card containing the corresponding private key 62 * 63 * <pre> 64 * ICCSNSyntax ::= OCTET STRING (SIZE(8..20)) 65 * </pre> 66 */ 67 static final ASN1ObjectIdentifier id_isismtt_at_iCCSN = id_isismtt_at.branch("6"); 68 69 /** 70 * 71 * Reference for a file of a smartcard that stores the public key of this 72 * certificate and that is used as �security anchor�. 73 * 74 * <pre> 75 * PKReferenceSyntax ::= OCTET STRING (SIZE(20)) 76 * </pre> 77 */ 78 static final ASN1ObjectIdentifier id_isismtt_at_PKReference = id_isismtt_at.branch("7"); 79 80 /** 81 * Some other restriction regarding the usage of this certificate. May be 82 * used as attribute in attribute certificate or as extension in a 83 * certificate. 84 * 85 * <pre> 86 * RestrictionSyntax ::= DirectoryString (SIZE(1..1024)) 87 * </pre> 88 * 89 * @see org.bouncycastle.asn1.isismtt.x509.Restriction 90 */ 91 static final ASN1ObjectIdentifier id_isismtt_at_restriction = id_isismtt_at.branch("8"); 92 93 /** 94 * 95 * (Single)Request extension: Clients may include this extension in a 96 * (single) Request to request the responder to send the certificate in the 97 * response message along with the status information. Besides the LDAP 98 * service, this extension provides another mechanism for the distribution 99 * of certificates, which MAY optionally be provided by certificate 100 * repositories. 101 * 102 * <pre> 103 * RetrieveIfAllowed ::= BOOLEAN 104 * 105 * </pre> 106 */ 107 static final ASN1ObjectIdentifier id_isismtt_at_retrieveIfAllowed = id_isismtt_at.branch("9"); 108 109 /** 110 * SingleOCSPResponse extension: The certificate requested by the client by 111 * inserting the RetrieveIfAllowed extension in the request, will be 112 * returned in this extension. 113 * 114 * @see org.bouncycastle.asn1.isismtt.ocsp.RequestedCertificate 115 */ 116 static final ASN1ObjectIdentifier id_isismtt_at_requestedCertificate = id_isismtt_at.branch("10"); 117 118 /** 119 * Base ObjectIdentifier for naming authorities 120 */ 121 static final ASN1ObjectIdentifier id_isismtt_at_namingAuthorities = id_isismtt_at.branch("11"); 122 123 /** 124 * SingleOCSPResponse extension: Date, when certificate has been published 125 * in the directory and status information has become available. Currently, 126 * accrediting authorities enforce that SigG-conforming OCSP servers include 127 * this extension in the responses. 128 * 129 * <pre> 130 * CertInDirSince ::= GeneralizedTime 131 * </pre> 132 */ 133 static final ASN1ObjectIdentifier id_isismtt_at_certInDirSince = id_isismtt_at.branch("12"); 134 135 /** 136 * Hash of a certificate in OCSP. 137 * 138 * @see org.bouncycastle.asn1.isismtt.ocsp.CertHash 139 */ 140 static final ASN1ObjectIdentifier id_isismtt_at_certHash = id_isismtt_at.branch("13"); 141 142 /** 143 * <pre> 144 * NameAtBirth ::= DirectoryString(SIZE(1..64) 145 * </pre> 146 * 147 * Used in 148 * {@link org.bouncycastle.asn1.x509.SubjectDirectoryAttributes SubjectDirectoryAttributes} 149 */ 150 static final ASN1ObjectIdentifier id_isismtt_at_nameAtBirth = id_isismtt_at.branch("14"); 151 152 /** 153 * Some other information of non-restrictive nature regarding the usage of 154 * this certificate. May be used as attribute in atribute certificate or as 155 * extension in a certificate. 156 * 157 * <pre> 158 * AdditionalInformationSyntax ::= DirectoryString (SIZE(1..2048)) 159 * </pre> 160 * 161 * @see org.bouncycastle.asn1.isismtt.x509.AdditionalInformationSyntax 162 */ 163 static final ASN1ObjectIdentifier id_isismtt_at_additionalInformation = id_isismtt_at.branch("15"); 164 165 /** 166 * Indicates that an attribute certificate exists, which limits the 167 * usability of this public key certificate. Whenever verifying a signature 168 * with the help of this certificate, the content of the corresponding 169 * attribute certificate should be concerned. This extension MUST be 170 * included in a PKC, if a corresponding attribute certificate (having the 171 * PKC as base certificate) contains some attribute that restricts the 172 * usability of the PKC too. Attribute certificates with restricting content 173 * MUST always be included in the signed document. 174 * 175 * <pre> 176 * LiabilityLimitationFlagSyntax ::= BOOLEAN 177 * </pre> 178 */ 179 static final ASN1ObjectIdentifier id_isismtt_at_liabilityLimitationFlag = new ASN1ObjectIdentifier("0.2.262.1.10.12.0"); 180} 181