Re: [TLS] TLS1.2 CertificateVerify deocding

To: <tls at ietf.org>, "Akos Vandra" <axos88 at gmail.com>
Subject: Re: [TLS] TLS1.2 CertificateVerify deocding
From: carlyoung at keycomm.co.uk
Date: Wed, 15 Jul 2009 10:23:10 +0100
Delivered-to: tls at core3.amsl.com
List-archive: <http://www.ietf.org/mail-archive/web/tls>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Reply-to: carlyoung at keycomm.co.uk

>>On Wed 15/07/09 9:37 AM , Akos Vandra axos88 at gmail.com sent:
>>Hello,
>>
>>I have written to half a dozen mailing lists, but never got an answer.
>>This is why I am contacting you, in spite of the fact that I don't
>>think my email is on-topic here.
>>
>>My question is how to interpret this data? From the rfc I understood
>>that this should be a .DER encoded
>>
>>struct {
>>SignatureAndHashAlgorithm algorithm;
>>
>>opaque signature<0..2^16-1>;
>>} DigitallySigned;

Refer to RFC 5246, section 7.4.1.4.1 - this is not DER encoded - SignatureAndHashAlgorithm are just two octets I think. First octet is hash algorithm - second is signature algorithm.

Prev by Date: [TLS] TLS1.2 CertificateVerify deocding
Next by Date: [TLS] IETF-75 TLS meeting agenda
Previous by thread: [TLS] TLS1.2 CertificateVerify deocding
Next by thread: [TLS] IETF-75 TLS meeting agenda
Index(es):
- Date
- Thread

Re: [TLS] TLS1.2 CertificateVerify deocding

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.