001package org.apache.commons.ssl.org.bouncycastle.asn1.isismtt; 002 003import org.apache.commons.ssl.org.bouncycastle.asn1.ASN1ObjectIdentifier; 004 005/** 006 * ISISMT -- Industrial Signature Interoperability Specification 007 */ 008public interface ISISMTTObjectIdentifiers 009{ 010 011 /** 1.3.36.8 */ 012 static final ASN1ObjectIdentifier id_isismtt = new ASN1ObjectIdentifier("1.3.36.8"); 013 014 /** 1.3.36.8.1 */ 015 static final ASN1ObjectIdentifier id_isismtt_cp = id_isismtt.branch("1"); 016 017 /** 018 * The id-isismtt-cp-accredited OID indicates that the certificate is a 019 * qualified certificate according to Directive 1999/93/EC of the European 020 * Parliament and of the Council of 13 December 1999 on a Community 021 * Framework for Electronic Signatures, which additionally conforms the 022 * special requirements of the SigG and has been issued by an accredited CA. 023 * <p> 024 * 1.3.36.8.1.1 025 */ 026 027 static final ASN1ObjectIdentifier id_isismtt_cp_accredited = id_isismtt_cp.branch("1"); 028 029 /** 1.3.36.8.3 */ 030 static final ASN1ObjectIdentifier id_isismtt_at = id_isismtt.branch("3"); 031 032 /** 033 * Certificate extensionDate of certificate generation 034 * <pre> 035 * DateOfCertGenSyntax ::= GeneralizedTime 036 * </pre> 037 * OID: 1.3.36.8.3.1 038 */ 039 static final ASN1ObjectIdentifier id_isismtt_at_dateOfCertGen = id_isismtt_at.branch("1"); 040 041 /** 042 * Attribute to indicate that the certificate holder may sign in the name of 043 * a third person. May also be used as extension in a certificate. 044 * <p> 045 * OID: 1.3.36.8.3.2 046 */ 047 static final ASN1ObjectIdentifier id_isismtt_at_procuration = id_isismtt_at.branch("2"); 048 049 /** 050 * Attribute to indicate admissions to certain professions. May be used as 051 * attribute in attribute certificate or as extension in a certificate 052 * <p> 053 * OID: 1.3.36.8.3.3 054 */ 055 static final ASN1ObjectIdentifier id_isismtt_at_admission = id_isismtt_at.branch("3"); 056 057 /** 058 * Monetary limit for transactions. The QcEuMonetaryLimit QC statement MUST 059 * be used in new certificates in place of the extension/attribute 060 * MonetaryLimit since January 1, 2004. For the sake of backward 061 * compatibility with certificates already in use, SigG conforming 062 * components MUST support MonetaryLimit (as well as QcEuLimitValue). 063 * <p> 064 * OID: 1.3.36.8.3.4 065 */ 066 static final ASN1ObjectIdentifier id_isismtt_at_monetaryLimit = id_isismtt_at.branch("4"); 067 068 /** 069 * A declaration of majority. May be used as attribute in attribute 070 * certificate or as extension in a certificate 071 * <p> 072 * OID: 1.3.36.8.3.5 073 */ 074 static final ASN1ObjectIdentifier id_isismtt_at_declarationOfMajority = id_isismtt_at.branch("5"); 075 076 /** 077 * Serial number of the smart card containing the corresponding private key 078 * <pre> 079 * ICCSNSyntax ::= OCTET STRING (SIZE(8..20)) 080 * </pre> 081 * <p> 082 * OID: 1.3.36.8.3.6 083 */ 084 static final ASN1ObjectIdentifier id_isismtt_at_iCCSN = id_isismtt_at.branch("6"); 085 086 /** 087 * Reference for a file of a smartcard that stores the public key of this 088 * certificate and that is used as "security anchor". 089 * <pre> 090 * PKReferenceSyntax ::= OCTET STRING (SIZE(20)) 091 * </pre> 092 * <p> 093 * OID: 1.3.36.8.3.7 094 */ 095 static final ASN1ObjectIdentifier id_isismtt_at_PKReference = id_isismtt_at.branch("7"); 096 097 /** 098 * Some other restriction regarding the usage of this certificate. May be 099 * used as attribute in attribute certificate or as extension in a 100 * certificate. 101 * <pre> 102 * RestrictionSyntax ::= DirectoryString (SIZE(1..1024)) 103 * </pre> 104 * <p> 105 * OID: 1.3.36.8.3.8 106 * 107 * @see org.bouncycastle.asn1.isismtt.x509.Restriction 108 */ 109 static final ASN1ObjectIdentifier id_isismtt_at_restriction = id_isismtt_at.branch("8"); 110 111 /** 112 * (Single)Request extension: Clients may include this extension in a 113 * (single) Request to request the responder to send the certificate in the 114 * response message along with the status information. Besides the LDAP 115 * service, this extension provides another mechanism for the distribution 116 * of certificates, which MAY optionally be provided by certificate 117 * repositories. 118 * <pre> 119 * RetrieveIfAllowed ::= BOOLEAN 120 * </pre> 121 * <p> 122 * OID: 1.3.36.8.3.9 123 */ 124 static final ASN1ObjectIdentifier id_isismtt_at_retrieveIfAllowed = id_isismtt_at.branch("9"); 125 126 /** 127 * SingleOCSPResponse extension: The certificate requested by the client by 128 * inserting the RetrieveIfAllowed extension in the request, will be 129 * returned in this extension. 130 * <p> 131 * OID: 1.3.36.8.3.10 132 * 133 * @see org.bouncycastle.asn1.isismtt.ocsp.RequestedCertificate 134 */ 135 static final ASN1ObjectIdentifier id_isismtt_at_requestedCertificate = id_isismtt_at.branch("10"); 136 137 /** 138 * Base ObjectIdentifier for naming authorities 139 * <p> 140 * OID: 1.3.36.8.3.11 141 */ 142 static final ASN1ObjectIdentifier id_isismtt_at_namingAuthorities = id_isismtt_at.branch("11"); 143 144 /** 145 * SingleOCSPResponse extension: Date, when certificate has been published 146 * in the directory and status information has become available. Currently, 147 * accrediting authorities enforce that SigG-conforming OCSP servers include 148 * this extension in the responses. 149 * 150 * <pre> 151 * CertInDirSince ::= GeneralizedTime 152 * </pre> 153 * <p> 154 * OID: 1.3.36.8.3.12 155 */ 156 static final ASN1ObjectIdentifier id_isismtt_at_certInDirSince = id_isismtt_at.branch("12"); 157 158 /** 159 * Hash of a certificate in OCSP. 160 * <p> 161 * OID: 1.3.36.8.3.13 162 * 163 * @see org.bouncycastle.asn1.isismtt.ocsp.CertHash 164 */ 165 static final ASN1ObjectIdentifier id_isismtt_at_certHash = id_isismtt_at.branch("13"); 166 167 /** 168 * <pre> 169 * NameAtBirth ::= DirectoryString(SIZE(1..64) 170 * </pre> 171 * 172 * Used in 173 * {@link org.bouncycastle.asn1.x509.SubjectDirectoryAttributes SubjectDirectoryAttributes} 174 * <p> 175 * OID: 1.3.36.8.3.14 176 */ 177 static final ASN1ObjectIdentifier id_isismtt_at_nameAtBirth = id_isismtt_at.branch("14"); 178 179 /** 180 * Some other information of non-restrictive nature regarding the usage of 181 * this certificate. May be used as attribute in atribute certificate or as 182 * extension in a certificate. 183 * 184 * <pre> 185 * AdditionalInformationSyntax ::= DirectoryString (SIZE(1..2048)) 186 * </pre> 187 * <p> 188 * OID: 1.3.36.8.3.15 189 * 190 * @see org.bouncycastle.asn1.isismtt.x509.AdditionalInformationSyntax 191 */ 192 static final ASN1ObjectIdentifier id_isismtt_at_additionalInformation = id_isismtt_at.branch("15"); 193 194 /** 195 * Indicates that an attribute certificate exists, which limits the 196 * usability of this public key certificate. Whenever verifying a signature 197 * with the help of this certificate, the content of the corresponding 198 * attribute certificate should be concerned. This extension MUST be 199 * included in a PKC, if a corresponding attribute certificate (having the 200 * PKC as base certificate) contains some attribute that restricts the 201 * usability of the PKC too. Attribute certificates with restricting content 202 * MUST always be included in the signed document. 203 * <pre> 204 * LiabilityLimitationFlagSyntax ::= BOOLEAN 205 * </pre> 206 * <p> 207 * OID: 0.2.262.1.10.12.0 208 */ 209 static final ASN1ObjectIdentifier id_isismtt_at_liabilityLimitationFlag = new ASN1ObjectIdentifier("0.2.262.1.10.12.0"); 210}