ASN.1 module Ieee1609Dot2Dot1CertManagement

OID: {iso(1) identified-organization(3) ieee(111) standards-association-numbered-series-standards(2) wave-stds(1609) dot2(2) extension-standards(255) dot1(1) interfaces(1) cert-management(7) major-version-3(3) minor-version-2(2)}

Imports:

Data Elements:

CertManagementPdu

This is the parent structure for all SCMS component certificate management structures. An overview of this structure is as follows:

CertManagementPdu ::= CHOICE { compositeCrl CompositeCrl, certificateChain CertificateChain, multiSignedCtl MultiSignedCtl, tbsCtlSignature ToBeSignedCtlSignature, infoStatus CertificateManagementInfoStatus, ... }

CompositeCrl

This structure is used to encapsulate CRLs and a CTL. An overview of this structure is as follows:

CompositeCrl ::= SEQUENCE { crl SEQUENCE SIZE(0..MAX) OF SecuredCrl, homeCtl MultiSignedCtlSpdu, ... }

CertificateChain

This structure is used to encapsulate certificates and a CTL. An overview of this structure is as follows:

CertificateChain ::= SEQUENCE { homeCtl MultiSignedCtlSpdu, others SEQUENCE SIZE(0..MAX) OF Certificate, ... }

MultiSignedCtl

This structure a certificate trust list (CTL) signed by multiple signers, the electors. An overview of this structure is as follows:

MultiSignedCtl ::= SEQUENCE { type IEEE-1609-2-1-MSCTL.&type({ Ieee1609dot2dot1Ctls }), tbsCtl IEEE-1609-2-1-MSCTL.&TbsCtl({ Ieee1609dot2dot1Ctls }{@.type}), unsigned IEEE-1609-2-1-MSCTL.&UnsignedCtlMaterial({ Ieee1609dot2dot1Ctls }{@.type}), signatures SEQUENCE (SIZE(1..MAX)) OF CtlSignatureSpdu }

IEEE-1609-2-1-MSCTL

This is the ASN.1 Information Object Class used to associate multisigned CTL type identifiers, CTL contents, and unsigned material. In this structure:

IEEE-1609-2-1-MSCTL ::= CLASS { &type Ieee1609dot2dot1MsctlType, &TbsCtl, &UnsignedCtlMaterial } WITH SYNTAX {&TbsCtl IDENTIFIED BY &type USING &UnsignedCtlMaterial}

Ieee1609dot2dot1Ctls

This is the Information Object Set containing the instances of the IEEE-1609-2-1-MSCTL class that are specified for use. Only one instance is specified for use in this version of this document.

Ieee1609dot2dot1Ctls IEEE-1609-2-1-MSCTL ::= { {FullIeeeTbsCtl IDENTIFIED BY fullIeeeCtl USING SequenceOfCertificate}, ... }

Ieee1609dot2dot1MsctlType

This is the integer used to identify the type of the CTL.

Ieee1609dot2dot1MsctlType ::= INTEGER (0..255)
fullIeeeCtl Ieee1609dot2dot1MsctlType ::= 1

FullIeeeTbsCtl

This structure specifies a CTL that contains information about the complete set of certificates trusted by the electors that sign the CTL. An overview of this structure is as follows:

For validity conditions on a signed FullIeeeTbsCtl, see 10.2.

NOTE:

  1. If in future CTL types are defined that contain the same information as, or a subset of the information in, the fullIeeeCtl, those types are anticipated to contain the same sequence number as the corresponding fullIeeeCtl.
  2. Any root CA or elector certificate that is not on the CTL is not trusted. The electorRemove and rootCaRemove are intended to be used only if the SCMS manager wants to explicitly indicate that a previously trusted entity (elector or root CA) is now not trusted even though that entity's certificate is still within its validity period. In practice, it is anticipated that the remove fields (electorRemove and rootCaRemove) will almost always be sequences of length 0.
FullIeeeTbsCtl ::= SEQUENCE { type Ieee1609dot2dot1MsctlType(fullIeeeCtl), ctlSeriesId CtlSeriesId, sequenceNumber CtlSequenceNumber, effectiveDate Time32, electorApprove SEQUENCE OF CtlElectorEntry, electorRemove SEQUENCE OF CtlElectorEntry, rootCaApprove SEQUENCE OF CtlRootCaEntry, rootCaRemove SEQUENCE OF CtlRootCaEntry, ..., quorum INTEGER }

CtlSeriesId

This structure identifies a group of electors that sign a series of CTLs for a specific purpose. Registration of CtlSeriesId values is managed by the IEEE RA; see http://standards.ieee.org/regauth. A list of assigned CtlSeriesId values is provided in K.1.

CtlSeriesId ::= OCTET STRING (SIZE(8))

CtlSequenceNumber

This structure is used to encode the CTL sequence number. This document does not specify semantics of this type once it reaches its maximum value.

CtlSequenceNumber ::= INTEGER(0..65535)

CtlElectorEntry

This structure contains the hash of an elector certificate.

CtlElectorEntry ::= HashedId48

CtlRootCaEntry

This structure contains the hash of a root CA certificate.

CtlRootCaEntry ::= HashedId32

ToBeSignedCtlSignature

This structure contains the CTL-instance-specific information used to generate a signature on the CTL. An overview of this structure is as follows:

ToBeSignedCtlSignature ::= SEQUENCE { ctlSeriesId CtlSeriesId, ctlType Ieee1609dot2dot1MsctlType, sequenceNumber CtlSequenceNumber, tbsCtlHash HashedId48 }

CertificateManagementInfoStatus

This structure contains the status of different certificate management information, including CRLs, CTLs, and individual certificates of CAs, MAs, and the RA.

CertificateManagementInfoStatus ::= SEQUENCE { crl SequenceOfCrlInfoStatus, ctl SequenceOfCtlInfoStatus, caCcf Time32, ma SequenceOfMaInfoStatus, ra Time32 OPTIONAL, ... }

SequenceOfCtlInfoStatus

This type is used for clarity of definitions.

SequenceOfCtlInfoStatus ::= SEQUENCE OF CtlInfoStatus

CtlInfoStatus

This structure contains the status information for a CTL.

CtlInfoStatus ::= SEQUENCE { ctlSeriesId CtlSeriesId, sequenceNumber CtlSequenceNumber, lastUpdate Time32, ... }

SequenceOfCrlInfoStatus

This type is used for clarity of definitions.

SequenceOfCrlInfoStatus ::= SEQUENCE OF CrlInfoStatus

CrlInfoStatus

This structure contains the status information for a CRL.

CrlInfoStatus ::= SEQUENCE { cracaId HashedId8, series CrlSeries, issueDate Time32, ... }

SequenceOfMaInfoStatus

This type is used for clarity of definitions.

SequenceOfMaInfoStatus ::= SEQUENCE OF MaInfoStatus

MaInfoStatus

This structure contains the status information for an MA's certificate.

MaInfoStatus ::= SEQUENCE { psids SequenceOfPsid, updated Time32, ... }