[x500standard] Another lack of clarity in X.509

• From: "Erik Andersen" <era@xxxxxxx>
• To: "Directory list" <x500standard@xxxxxxxxxxxxx>
• Date: Wed, 25 Jun 2008 17:33:15 +0200

Hi,
 
I am now in 6.1 of X.509:2005.
 
It is my understanding that in a distributed environment (and directory
is potentially distributed), the signature is generated based on the DER
encoding of the abstract syntax, but the data actually transmitted need
not be the strictly DER encoded. If this understanding is not true, then
X.509 is not clear about it.
 
Assuming it is true, the recipient cannot know whether a received
message is DER encoded or not, but needs to decode the message and
re-encode in DER to check the signature.
 
The last paragraph of 6.1 with the three bullets gives me problems. An
implementation cannot easily decode a message if the underlying abstract
syntax is not fully known (e.g. it difficult to distinguish between set
and set-of). The three last bullets pretend to be the solution to that
problem.
 
A DUA sends a message to DSA-A and DSA-A chains the message to DSA-B. It
must be assumed that the DUA will fully understand the abstract syntax
of the sent message, but assuming that DSA-A does not fully know the
underlying abstract syntax, the following rules should then be used:
 
-          DSA-A preserves the encoding of the received message, and it
is supposed to add it own signature.
-          DSA-A after having added all its chaining stuff, DER encode
the part of the abstract syntax it fully know and keep all unknown data
with preserved encoding (which may not be DER encoded). It then
generates the signature.
-          DSA-B should now just check the signature based on the
received encoding.
 
How does DSA-B know that DSA-A is a stupid DSA not knowing the fully
abstract syntax? DSA-B may fully understand the abstract syntax and may
therefore decode the whole thing and re-encode in DER to check the
signature. The DSA-A signature may the fail.
 
If it is opposite, the DSA-A is a clever DSA and DSA-B is a stupid DSA,
then DSA-B cannot fully decode the message and create its own DER
encoding to check DSA-A's signature.
 
 
Erik Andersen
Andersen's L-Service
Mobile: +45 20 97 14 90
e-mail:  <mailto:era@xxxxxxx> era@xxxxxxx
 <http://www.x500.eu/> http://www.x500.eu
 <http://www.x500standard.com/> http://www.x500standard.com/
 

• Follow-Ups:
  • [x500standard] Re: Another lack of clarity in X.509
    • From: David Chadwick
  • [x500standard] Re: Another lack of clarity in X.509
    • From: Jean-Paul LEMAIRE

Other related posts:

• » [x500standard] Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509
• » [x500standard] Re: Another lack of clarity in X.509

1. Home
2. x500standard
3. Archive
4. 06-2008

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---