001: package org.bouncycastle.asn1.isismtt;
002:
003: import org.bouncycastle.asn1.DERObjectIdentifier;
004:
005: public interface ISISMTTObjectIdentifiers {
006:
007: public static final DERObjectIdentifier id_isismtt = new DERObjectIdentifier(
008: "1.3.36.8");
009:
010: public static final DERObjectIdentifier id_isismtt_cp = new DERObjectIdentifier(
011: id_isismtt + ".1");
012:
013: /**
014: * The id-isismtt-cp-accredited OID indicates that the certificate is a
015: * qualified certificate according to Directive 1999/93/EC of the European
016: * Parliament and of the Council of 13 December 1999 on a Community
017: * Framework for Electronic Signatures, which additionally conforms the
018: * special requirements of the SigG and has been issued by an accredited CA.
019: */
020: public static final DERObjectIdentifier id_isismtt_cp_accredited = new DERObjectIdentifier(
021: id_isismtt_cp + ".1");
022:
023: public static final DERObjectIdentifier id_isismtt_at = new DERObjectIdentifier(
024: id_isismtt + ".3");
025:
026: /**
027: * Certificate extensionDate of certificate generation
028: *
029: * <pre>
030: * DateOfCertGenSyntax ::= GeneralizedTime
031: * </pre>
032: */
033: public static final DERObjectIdentifier id_isismtt_at_dateOfCertGen = new DERObjectIdentifier(
034: id_isismtt_at + ".1");
035:
036: /**
037: * Attribute to indicate that the certificate holder may sign in the name of
038: * a third person. May also be used as extension in a certificate.
039: */
040: public static final DERObjectIdentifier id_isismtt_at_procuration = new DERObjectIdentifier(
041: id_isismtt_at + ".2");
042:
043: /**
044: * Attribute to indicate admissions to certain professions. May be used as
045: * attribute in attribute certificate or as extension in a certificate
046: */
047: public static final DERObjectIdentifier id_isismtt_at_admission = new DERObjectIdentifier(
048: id_isismtt_at + ".3");
049:
050: /**
051: * Monetary limit for transactions. The QcEuMonetaryLimit QC statement MUST
052: * be used in new certificates in place of the extension/attribute
053: * MonetaryLimit since January 1, 2004. For the sake of backward
054: * compatibility with certificates already in use, SigG conforming
055: * components MUST support MonetaryLimit (as well as QcEuLimitValue).
056: */
057: public static final DERObjectIdentifier id_isismtt_at_monetaryLimit = new DERObjectIdentifier(
058: id_isismtt_at + ".4");
059:
060: /**
061: * A declaration of majority. May be used as attribute in attribute
062: * certificate or as extension in a certificate
063: */
064: public static final DERObjectIdentifier id_isismtt_at_declarationOfMajority = new DERObjectIdentifier(
065: id_isismtt_at + ".5");
066:
067: /**
068: *
069: * Serial number of the smart card containing the corresponding private key
070: *
071: * <pre>
072: * ICCSNSyntax ::= OCTET STRING (SIZE(8..20))
073: * </pre>
074: */
075: public static final DERObjectIdentifier id_isismtt_at_iCCSN = new DERObjectIdentifier(
076: id_isismtt_at + ".6");
077:
078: /**
079: *
080: * Reference for a file of a smartcard that stores the public key of this
081: * certificate and that is used as �security anchor�.
082: *
083: * <pre>
084: * PKReferenceSyntax ::= OCTET STRING (SIZE(20))
085: * </pre>
086: */
087: public static final DERObjectIdentifier id_isismtt_at_PKReference = new DERObjectIdentifier(
088: id_isismtt_at + ".7");
089:
090: /**
091: * Some other restriction regarding the usage of this certificate. May be
092: * used as attribute in attribute certificate or as extension in a
093: * certificate.
094: *
095: * <pre>
096: * RestrictionSyntax ::= DirectoryString (SIZE(1..1024))
097: * </pre>
098: *
099: * @see org.bouncycastle.asn1.isismtt.x509.Restriction
100: */
101: public static final DERObjectIdentifier id_isismtt_at_restriction = new DERObjectIdentifier(
102: id_isismtt_at + ".8");
103:
104: /**
105: *
106: * (Single)Request extension: Clients may include this extension in a
107: * (single) Request to request the responder to send the certificate in the
108: * response message along with the status information. Besides the LDAP
109: * service, this extension provides another mechanism for the distribution
110: * of certificates, which MAY optionally be provided by certificate
111: * repositories.
112: *
113: * <pre>
114: * RetrieveIfAllowed ::= BOOLEAN
115: *
116: * </pre>
117: */
118: public static final DERObjectIdentifier id_isismtt_at_retrieveIfAllowed = new DERObjectIdentifier(
119: id_isismtt_at + ".9");
120:
121: /**
122: * SingleOCSPResponse extension: The certificate requested by the client by
123: * inserting the RetrieveIfAllowed extension in the request, will be
124: * returned in this extension.
125: *
126: * @see org.bouncycastle.asn1.isismtt.ocsp.RequestedCertificate
127: */
128: public static final DERObjectIdentifier id_isismtt_at_requestedCertificate = new DERObjectIdentifier(
129: id_isismtt_at + ".10");
130:
131: /**
132: * Base ObjectIdentifier for naming authorities
133: */
134: public static final DERObjectIdentifier id_isismtt_at_namingAuthorities = new DERObjectIdentifier(
135: id_isismtt_at + ".11");
136:
137: /**
138: * SingleOCSPResponse extension: Date, when certificate has been published
139: * in the directory and status information has become available. Currently,
140: * accrediting authorities enforce that SigG-conforming OCSP servers include
141: * this extension in the responses.
142: *
143: * <pre>
144: * CertInDirSince ::= GeneralizedTime
145: * </pre>
146: */
147: public static final DERObjectIdentifier id_isismtt_at_certInDirSince = new DERObjectIdentifier(
148: id_isismtt_at + ".12");
149:
150: /**
151: * Hash of a certificate in OCSP.
152: *
153: * @see org.bouncycastle.asn1.isismtt.ocsp.CertHash
154: */
155: public static final DERObjectIdentifier id_isismtt_at_certHash = new DERObjectIdentifier(
156: id_isismtt_at + ".13");
157:
158: /**
159: * <pre>
160: * NameAtBirth ::= DirectoryString(SIZE(1..64)
161: * </pre>
162: *
163: * Used in
164: * {@link org.bouncycastle.asn1.x509.SubjectDirectoryAttributes SubjectDirectoryAttributes}
165: */
166: public static final DERObjectIdentifier id_isismtt_at_nameAtBirth = new DERObjectIdentifier(
167: id_isismtt_at + ".14");
168:
169: /**
170: * Some other information of non-restrictive nature regarding the usage of
171: * this certificate. May be used as attribute in atribute certificate or as
172: * extension in a certificate.
173: *
174: * <pre>
175: * AdditionalInformationSyntax ::= DirectoryString (SIZE(1..2048))
176: * </pre>
177: *
178: * @see org.bouncycastle.asn1.isismtt.x509.AdditionalInformationSyntax
179: */
180: public static final DERObjectIdentifier id_isismtt_at_additionalInformation = new DERObjectIdentifier(
181: id_isismtt_at + ".15");
182:
183: /**
184: * Indicates that an attribute certificate exists, which limits the
185: * usability of this public key certificate. Whenever verifying a signature
186: * with the help of this certificate, the content of the corresponding
187: * attribute certificate should be concerned. This extension MUST be
188: * included in a PKC, if a corresponding attribute certificate (having the
189: * PKC as base certificate) contains some attribute that restricts the
190: * usability of the PKC too. Attribute certificates with restricting content
191: * MUST always be included in the signed document.
192: *
193: * <pre>
194: * LiabilityLimitationFlagSyntax ::= BOOLEAN
195: * </pre>
196: */
197: public static final DERObjectIdentifier id_isismtt_at_liabilityLimitationFlag = new DERObjectIdentifier(
198: "0.2.262.1.10.12.0");
199: }
|