idnits 2.17.1 

draft-leontiev-cryptopro-cppk-00.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

  ** Looks like you're using RFC 2026 boilerplate.  This must be updated to
     follow RFC 3978/3979, as updated by RFC 4748.


  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

     No issues found here.

  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

  ** The document seems to lack an IANA Considerations section.  (See Section
     2.2 of https://www.ietf.org/id-info/checklist for how to handle the case
     when there are no actions for IANA.)

  ** The document seems to lack separate sections for Informative/Normative
     References.  All references will be assumed normative when checking for
     downward references.

  ** The abstract seems to contain references ([RFC3280], [RFC3279]), which
     it shouldn't.  Please replace those with straight textual mentions of the
     documents in question.


  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the RFC 3978 Section 5.4 Copyright Line does not
     match the current year

  == Line 110 has weird spacing: '...gorithm   is u...'

  == Line 137 has weird spacing: '...ined in  a cer...'

  == Line 138 has weird spacing: '...scribed  in th...'

  == Line 244 has weird spacing: '...ificant  of  6...'

  == Line 275 has weird spacing: '... public  key o...'

  == (5 more instances...)

  == The document seems to use 'NOT RECOMMENDED' as an RFC 2119 keyword, but
     does not include the phrase in its RFC 2119 key words list.

  -- The document seems to lack a disclaimer for pre-RFC5378 work, but may
     have content which was first submitted before 10 November 2008.  If you
     have contacted all the original authors and they are all willing to grant
     the BCP78 rights to the IETF Trust, then this is fine, and you can ignore
     this comment.  If not, you may need to add the pre-RFC5378 disclaimer. 
     (See the Legal Provisions document at
     https://trustee.ietf.org/license-info for more information.)

  -- The document date (June 15, 2003) is 7621 days in the past.  Is this
     intentional?


  Checking references for intended status: Informational
  ----------------------------------------------------------------------------

  == Missing Reference: 'RFC 2119' is mentioned on line 86, but not defined

  == Missing Reference: 'GOST3411' is mentioned on line 167, but not defined

  == Missing Reference: 'GOST341094' is mentioned on line 124, but not defined

  == Missing Reference: 'GOST34102001' is mentioned on line 125, but not
     defined

  == Missing Reference: 'GOSTR3411' is mentioned on line 592, but not defined

  -- Looks like a reference, but probably isn't: '0' on line 477

  -- Looks like a reference, but probably isn't: '31' on line 290

  -- Looks like a reference, but probably isn't: '63' on line 482

  == Unused Reference: 'GOSTR341194' is defined on line 1972, but no explicit
     reference was found in the text

  == Unused Reference: 'RFC 2219' is defined on line 1992, but no explicit
     reference was found in the text

  == Unused Reference: 'TLS' is defined on line 1996, but no explicit
     reference was found in the text

  ** Obsolete normative reference: RFC 3280 (Obsoleted by RFC 5280)

  ** Obsolete normative reference: RFC 2246 (ref. 'TLS') (Obsoleted by RFC
     4346)


     Summary: 6 errors (**), 0 flaws (~~), 16 warnings (==), 5 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------


2	PKIX Working Group                         Serguei Leontiev, CRYPTO-PRO
3	INTERNET-DRAFT                        Dennis Shefanovskij, DEMOS Co Ltd
4	Expires December 15, 2003                                 June 15, 2003
5	Intended Category: Informational

7	      Algorithms and Identifiers for the Internet X.509 Public Key
8	Infrastructure Certificates and Certificate Revocation List (CRL),
9	corresponding to the algorithms GOST R 34.10-94, GOST R 34.10-2001, GOST
10	R 34.11-94

12	                     <draft-leontiev-cryptopro-cppk-00.txt>

14	Status of this Memo

16	   This document is an Internet-Draft and is in full conformance with
17	   all provisions of Section 10 of RFC2026.

19	   Internet-Drafts are working documents of the Internet Engineering
20	   Task Force (IETF), its areas, and its working groups.  Note that
21	   other groups may also distribute working documents as Internet-
22	   Drafts.

24	   Internet-Drafts are draft documents valid for a maximum of six months
25	   and may be updated, replaced, or obsoleted by other documents at any
26	   time.  It is inappropriate to use Internet-Drafts as reference
27	   material or to cite them other than as "work in progress."

29	   The list of current Internet-Drafts can be accessed at
30	   http://www.ietf.org/ietf/1id-abstracts.txt

32	   The list of Internet-Draft Shadow Directories can be accessed at
33	   http://www.ietf.org/shadow.html.

35	   Comments or suggestions for improvement may be done via "ietf-pkix"
36	   mailing list, or directly to the authors.

38	Abstract

40	   This document describes identifiers and appropriate parameters for
41	   the algorithms GOST R 34.10-94, GOST R 34.10-2001, GOST R 34.11-94,
42	   and also ASN.1 encoding scheme for digital signatures and public
43	   keys, used in Internet X.509 Public Key Infrastructure (PKI).  This
44	   specification extends [RFC 3279], "Algorithms and Identifiers for the
45	   Internet X.509 Public Key Infrastructure Certificate and Certificate
46	   Revocation List (CRL) Profile" and, correspondingly, [RFC 3280],
47	   "Internet X.509 Public Key Infrastructure: Certificate and
48	   Certificate Revocation List (CRL) Profile". All realizations of this
49	   specification also MUST correspond [RFC 3280].

51	Table of Contents

53	   1      Introduction. . . . . . . . . . . . . . . . . . . . . .   2
54	   2      Algorithm Support . . . . . . . . . . . . . . . . . . .   3
55	   2.1    One-way Hash Functions. . . . . . . . . . . . . . . . .   4
56	   2.1.1  One-way Hash Function GOST R 34.11-94 . . . . . . . . .   4
57	   2.2    Signature Algorithms. . . . . . . . . . . . . . . . . .   4
58	   2.2.1  Signature Algorithm GOST R 34.10-94 . . . . . . . . . .   5
59	   2.2.2  Signature Algorithm GOST R 34.10-2001 . . . . . . . . .   6
60	   2.3    Subject Public Key Algorithms . . . . . . . . . . . . .   7
61	   2.3.1  GOST R 34.10-94 Keys. . . . . . . . . . . . . . . . . .   7
62	   2.3.2  GOST R 34.10-2001 Keys. . . . . . . . . . . . . . . . .   9
63	   3      Algorithm Parameters. . . . . . . . . . . . . . . . . .  11
64	   3.1    GOST R 34.11-94 Parameters. . . . . . . . . . . . . . .  13
65	   3.2    GOST R 34.10-94 Parameters. . . . . . . . . . . . . . .  13
66	   3.3    GOST R 34.10-2001 Parameters. . . . . . . . . . . . . .  14
67	   4      Security Considerations . . . . . . . . . . . . . . . .  14
68	   5      Appendix ASN.1 Moduls . . . . . . . . . . . . . . . . .  14
69	   5.1    Cryptographic-Gost-Useful-Definitions . . . . . . . . .  14
70	   5.2    GostR3411-94-DigestSyntax . . . . . . . . . . . . . . .  17
71	   5.3    GostR3411-94-ParamSetSyntax . . . . . . . . . . . . . .  18
72	   5.4    GostR3410-94-PKISyntax. . . . . . . . . . . . . . . . .  21
73	   5.5    GostR3410-94-ParamSetSyntax . . . . . . . . . . . . . .  23
74	   5.6    GostR3410-2001-PKISyntax. . . . . . . . . . . . . . . .  33
75	   5.7    GostR3410-2001-ParamSetSyntax . . . . . . . . . . . . .  35
76	   6      References. . . . . . . . . . . . . . . . . . . . . . .  41
77	   Acknowledgments. . . . . . . . . . . . . . . . . . . . . . . .  42
78	   Author's Addresses . . . . . . . . . . . . . . . . . . . . . .  43
79	   Full Copyright Statement . . . . . . . . . . . . . . . . . . .  44

81	1  Introduction

83	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
84	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
85	   document are to be interpreted as described in [RFC 2119].

87	   This document defines identifiers and corresponding algorithm
88	   parameters and attributes proposed by CRYPTO-PRO Company within
89	   "Russian Cryptographic Software Compatibility Agreement" community
90	   for the algorithms GOST R 34.10-94, GOST R 34.10-2001, GOST R
91	   34.11-94, key establishment algorithms based on GOST R 34.10-94
92	   public keys, key establishment algorithms based on GOST R 34.10-2001
93	   public keys, and also ASN.1 encoding [X.660] for digital signatures
94	   and public keys, used in Internet X.509 Public Key Infrastructure
95	   (PKI).

97	   This specification extends [RFC 3279], "Algorithms and Identifiers
98	   for the Internet X.509 Public Key Infrastructure Certificate and
99	   Certificate Revocation List (CRL) Profile" and, correspondingly, [RFC
100	   3280], "Internet X.509 Public Key Infrastructure: Certificate and
101	   Certificate Revocation List (CRL) Profile". All realizations of this
102	   specification MUST also correspond [RFC 3280].

104	   This specification defines the content of the signatureAlgorithm,
105	   signatureValue, signature, and subjectPublicKeyInfo fields within
106	   Internet X.509 certificates and CRLs.

108	   This document defines one-way hash-function GOST R 34.11-94
109	   [GOST3411] for use in the generation of digital signatures. This
110	   algorithm   is used in conjunction with digital signature algorithms.

112	   This specification describes the encoding of digital signatures,
113	   generated with the following cryptographic algorithms:

115	      * GOST R 34.10-94;
116	      * GOST R 34.10-2001.

118	   This document also defines the contents of the subjectPublicKeyInfo
119	   field for Internet X.509 certificates. For each algorithm, the
120	   appropriate alternatives for the keyUsage extension are provided.
121	   This specification describes encoding formats for public keys used
122	   with the following cryptographic algorithms:

124	      * GOST R 34.10-94 [GOST341094];
125	      * GOST R 34.10-2001 [GOST34102001];
126	      * Key establishment algorithms based on GOST R 34.10-94 public
127	   keys [CPALGS];
128	      * Key establishment algorithms based on GOST R 34.10-2001 public
129	   keys [CPALGS].

131	2  Algorithm Support

133	   This section is review of cryptographic algorithms, which may be used
134	   within the Internet X.509 certificates and CRL profile [RFC 3280].
135	   The one-way hash functions and digital signature algorithms, which
136	   may be used to sign certificates and CRLs, and identifies object
137	   identifiers (OIDs) for public keys contained in  a certificate are
138	   also described  in this section.

140	   The appropriate CA and/or applications MUST support digital
141	   signatures and public keys fully for one of the specified algorithms.
142	   Hence when using any of the algorithms identified in this
143	   specification in CA and/or applications MUST support them as
144	   described below.

146	2.1  One-way Hash Functions

148	   This section identifies one-way, collision free hash function GOST R
149	   34.11-94 -  the only one could be used in digital signature
150	   algorithms GOST R 34.10-94/2001. The data that is hashed for
151	   certificates and CRL signing is fully described in [RFC 3280].

153	2.1.1  One-way Hash Function GOST R 34.11-94

155	   GOST R 34.11-94 has been developed by "GUBS of Federal Agency
156	   Government Communication and Information" and "All-Russian Scientific
157	   and Research Institute of Standardization".  The algorithm GOST R
158	   34.11-94 produces a 256-bit hash value of the arbitrary finite bit
159	   length input. This document does not contain GOST R 34.11-94 full
160	   specification, which could be found in [GOSTR3411] in Russian,
161	   [Schneier95] ch. 18.11, p. 454. contain the brief technical
162	   description in English.

164	   The initial value (IV) and S-box are optional for algorithm
165	   parameters (Algorithm Parameters part in [GOST28147] in Russian,
166	   description in English see in [Schneier95] ch. 14.1, p. 331). The
167	   Standard [GOST3411] does not define hash function algorithm
168	   parameters, which ought to be set by OID in software code.  The
169	   Parameters for OID prescribed below are included in appendix.

171	2.2  Signature Algorithms

173	   In according to [RFC 3280] the Certificates and CRL may be signed
174	   with either GOST R 34.10-94 or with GOST R 34.10-2001 signature
175	   algorithms. The signatureAlgorithm field of Certificates or
176	   CertificateRevocationList for certificate or CRL indicates the
177	   algorithm ID used for signature and associated parameters, essential
178	   as OID. In case of omitted parameters, these ones are generated
179	   hereditarily from top of issuers.  This section also defines
180	   algorithm identifiers and parameters that MUST be used in the
181	   signatureAlgorithm field in a Certificate or
182	   CertificateRevocationList.

184	   Signature algorithms are always used conjointly with a one-way hash
185	   function GOST R 34.11-94 as indicated in [GOSTR341094] and
186	   [GOSTR34102001].

188	   This section identifies OIDS for GOST R 34.10-94 and GOST R
189	   34.10-2001. The contents of the parameters component for each
190	   algorithm may vary and details are provided below for each algorithm
191	   separately.

193	   The data to be signed (per example, the one-way hash function output
194	   value) is preformatted for the signature algorithm to be used. Then,
195	   a private key operation is performed to generate the signature value.
196	   This signature value is then ASN.1 encoded as a BIT STRING and
197	   included in the Certificate or CertificateRevocationList in the
198	   signatureValue field.

200	2.2.1  Signature Algorithm GOST R 34.10-94

202	   GOST R 34.10-94 has been developed by "GUBS of Federal Agency
203	   Government Communication and Information" and "All-Russian Scientific
204	   and Research Institute of Standardization".  This signature algorithm
205	   MUST be used conjointly with one-way, collision free hash function
206	   GOST R 34.11-94. This document does not contain GOST R 34.10-94
207	   standard description, which is fully described in [GOSTR341094] in
208	   Russian, and brief description in English could be found in
209	   [Schneier95] ch. 20.3, p. 495.

211	   The ASN.1 OID used to identify GOST R 34.10-94 signature algorithm in
212	   fields signatureAlgorithm in Certificate and
213	   CertificateRevocationList is the next:

215	   id-CryptoPro-algorithms OBJECT IDENTIFIER ::=
216	         { iso(1) member-body(2) ru(643) rans(2) cryptopro(2) }

218	   id-GostR3411-94-with-GostR3410-94 OBJECT IDENTIFIER ::=
219	         { id-CryptoPro-algorithms gostR3411-94-with-gostR3410-94(4)}

221	   GostR3410-94-CertificateSignatureAlgorithms
222	      ALGORITHM-IDENTIFIER ::= {
223	         { NULL IDENTIFIED BY
224	                       id-GostR3411-94-with-GostR3410-94 } |
225	         { GostR3410-94-PublicKeyParameters IDENTIFIED BY
226	                       id-GostR3411-94-with-GostR3410-94 } }

228	   See chapter Algorithms Parameters for further details.

230	   When the id-GostR3411-94-with-GostR3410-94 algorithm identifier
231	   appears in an AlgorithmIdentifier and parameters are omitted, the
232	   software MUST use the parameters from the signer's public key.

234	   Signature algorithm GOST R 34.10-94 generates digital signature in
235	   the form of a binary 512-bit vector (<r'>256||<s>256).  This vector
236	   is encoded as two data blocks, being given after decoding at the
237	   signature verification algorithm input. At first, <r'>256 block then
238	   <s>256 block. signatureValue field BIT STRING type:

240	   GostR3410-94-SignatureValue ::= BIT STRING
241	   At that, least-significant of the first octet
242	   (GostR3410EncryptedDigest[0]) corresponds to least-significant (1-st)
243	   of vector <r'>256||<s>256 (s1 =  (GostR3410EncryptedDigest[0] & 1)).
244	   Whereas most-significant  of  64-th octet (GostData[31]) corresponds
245	   to most-significant  (512-d) of vector  <r'>256||<s>256 (r'256 =
246	   ((GostR3410EncryptedDigest[63] & 0x80)>>7)).

248	2.2.2  Signature Algorithm GOST R 34.10-2001

250	   GOST R 34.10-2001 was developed by "GUBS of Federal Agency Government
251	   Communication and Information" and "All-Russian Scientific and
252	   Research Institute of Standardization".  This signature algorithm
253	   MUST be used conjointly with one-way, collision free hash function
254	   GOST R 34.11-94. This document does not contain GOST R 34.10-2001
255	   standard description, which is fully described in [GOSTR34102001].

257	   The ASN.1 OID used to identify GOST R 34.10-2001 signature algorithm
258	   in fields signatureAlgorithm of Certificate and
259	   CertificateRevocationList is:

261	   id-GostR3411-94-with-GostR3410-2001 OBJECT IDENTIFIER ::=
262	         { id-CryptoPro-algorithms gostR3411-94-with-gostR3410-2001(3) }

264	   GostR3410-2001-CertificateSignatureAlgorithms
265	     ALGORITHM-IDENTIFIER ::= {
266	       { NULL IDENTIFIED BY
267	                       id-GostR3411-94-with-GostR3410-2001 } |
268	       { GostR3410-2001-PublicKeyParameters IDENTIFIED BY
269	                       id-GostR3411-94-with-GostR3410-2001 } }

271	   See chapter Algorithms Parameters for further details.

273	   When the id-GostR3411-94-with-GostR3410-2001 algorithm identifier
274	   appears in an AlgorithmIdentifier and parameters are omitted, the
275	   MUST use the parameters concerned with the public  key of the issuer
276	   of this certificate or CRL.

278	   Signature algorithm GOST R 34.10-2001 generates digital signature in
279	   the form of a binary 512-bit vector (<r'>256||<s>256). This vector
280	   encoded as two data blocks, piping after encoding to input of
281	   signature verification algorithm in according to GOST R 34.10-2001,
282	   first block <r>256, then block <s>256. The field signatureValue has
283	   type BIT STRING:

285	   GostR3410-2001-CertificateSignature ::= BIT STRING

287	   At that, least-significant of the first octet
288	   (GostR3410EncryptedDigest[0]) corresponds to least-significant (1-st)
289	   of vector <r>256||<s>256 (s1 =  (GostR3410EncryptedDigest[0] & 1)).
290	   Whereas most-significant of 64-th octet (GostData[31]) corresponds to
291	   most-significant (512-d) of vector <r>256||<s>256 (r256 =
292	   ((GostR3410EncryptedDigest[63] & 0x80)>>7)).

294	2.3  Subject Public Key Algorithms

296	   In according to [RFC 3280] the certificates may contain a public key
297	   for any algorithm. Within the framework of this specification the
298	   only GOST R 34.10-94 and GOST R 34.10-2001 public key algorithms
299	   defined. The algorithm and associated parameters are definable as OID
300	   in certificate through ASN.1 structure AlgorithmIdentifier.

302	   This section identifies defines OID and public key parameters for the
303	   GOST R 34.10-94 and GOST R 34.10-2001 algorithms. The appropriate CA
304	   MUST use the predefined OID issuing certificates containing public
305	   keys for these algorithms. The appropriate applications supporting
306	   any of these algorithms MUST fully recognize the OID identified in
307	   this section

309	2.3.1  GOST R 34.10-94 Keys

311	   This section defines OID and parameters encoding scheme for public
312	   key including into certificate. Public key GOST R 34.10-94 could be
313	   used for digital signature verification by GOST R 34.10-94
314	   [GOSTR341094] algorithm and for key exchange algorithm based on GOST
315	   R 34.10-94 [CPALGS].

317	   Public key OID for GOST R 34.10-94 declared in this document is:

319	   id-GostR3410-94 OBJECT IDENTIFIER ::=
320	       { id-CryptoPro-algorithms gostR3410-94(20) }

322	   An assumed cryptographic key usage could be pointed in keyUsage field
323	   [RFC 3280]. The usage the same key for signature and for key
324	   establishment is NOT RECOMMENDED, but possible.

326	   SubjectPublicKeyInfo sintax of primary certificate context for id-
327	   GostR3410-94 algorithm produced in following ASN.1 structure:

329	   SubjectPublicKeyInfo ::=
330	       SEQUENCE {
331	      algorithm            AlgorithmIdentifier,
332	      subjectPublicKey     BIT STRING
333	       }

335	   GostR3410-94-PublicKeyAlgorithms  ALGORITHM-IDENTIFIER ::= {
336	       { GostR3410-94-PublicKeyParameters IDENTIFIED BY
337	                       id-GostR3410-94 } }

339	   GostR3410-94-PublicKeyParameters ::=
340	       SEQUENCE {
341	           publicKeyParamSet
342	               OBJECT IDENTIFIER,
343	           digestParamSet
344	               OBJECT IDENTIFIER,
345	           encryptionParamSet
346	               OBJECT IDENTIFIER OPTIONAL
347	       }

349	   where:
350	     * publicKeyParamSet - public key parameters identifier for GOST
351	     R 34.10-94;
352	     * digestParamSet - parameters identifier for GOST R 34.11-94;
353	     * encryptionParamSet - optional parameters identifier for GOST
354	   28147-89  MAY be presented anytime and MUST be presented if keyUsage
355	   is keyAgreement or keyEnchiperment.

357	   AlgorithmIdentifier within subjectPublicKeyInfo could takes place
358	   only if a certificate contains these parameters. If GOST R 34.10-94
359	   algorithm parameters are omitted in subjectPublicKeyInfo, and CA
360	   signs subject certificate using GOST R 34.10-94, then GOST R 34.10-94
361	   parameters taken from subjectPublicKeyInfo field of issuer
362	   certificate are applicable to public key of GOST R 34.10-94 subject.
363	   That is, cryptographic parameters inheritance takes place. If
364	   subjectPublicKeyInfo AlgorithmIdentifier field contain no parameters,
365	   but CA sign certificate using signature algorithm different from GOST
366	   R 34.10-94, then certificate users MUST reject it.

368	   Public key GOST R 34.10-94 MUST be ASN.1 encoded in following way.

370	   In GOST R 34.10-94 public key is a number y = a^x (mod p), where a
371	   and p  - parameters, and y is a bit-vector (<y>1024), at that
372	   encoding should present <y>1024 (BIT STRING) as a vector holding
373	   data in a little-endian. At first, a key is presented as an   OCTET
374	   STRING, and then, being DER-encoded, presented as a BIT STRING.

376	   GostR3410-94-PublicKey ::= BIT STRING

378	   GostR3410-94-PublicKeyOctetString ::= OCTET STRING

380	   If the keyUsage extension is present in an end-entity certificate,
381	   which contains a GOST R 34.10-94 public key, the following values MAY
382	   be present:

384	      digitalSignature;
385	      nonRepudiation.
386	      keyEncipherment;
387	      keyAgreement.

389	   If the keyAgreement or keyEnchiperment extension is present in a
390	   certificate GOST R 34.10-94 public key, the following values MAY be
391	   present as well:

393	      encipherOnly;
394	      decipherOnly.

396	   The keyUsage extension MUST NOT assert both encipherOnly and
397	   decipherOnly.

399	   If the keyUsage extension is present in an CA or CRL signer
400	   certificate which contain a GOST R 34.10-94 public key, the following
401	   values MAY be present:

403	      digitalSignature;
404	      nonRepudiation;
405	      keyCertSign;
406	      cRLSign.

408	2.3.2  GOST R 34.10-2001 Keys

410	   This section defines OID and parameters encoding for public key
411	   including in certificate. Public key GOST R 34.10-2001 could be used
412	   for digital signature generation by GOST R 34.10-2001 [GOSTR34102001]
413	   algorithm and for key exchange algorithm based on GOST R 34.10-2001
414	   [CPALGS]. Public key OID for GOST R 34.10-2001 is:

416	   id-GostR3410-2001 OBJECT IDENTIFIER ::=
417	       { id-CryptoPro-algorithms gostR3410-2001(19) }

419	   Assumed cryptographic key usage could be pointed in keyUsage field
420	   [RFC 3280]. The usage of the same key for digital signature and key
421	   establishment is NOT RECOMMENDED, but possible.

423	   SubjectPublicKeyInfo syntax of primary certificate context for id-
424	   GostR3410-94 algorithm produced in following ASN.1 structure:

426	   SubjectPublicKeyInfo ::=
427	       SEQUENCE {
428	           algorithm            AlgorithmIdentifier,
429	           subjectPublicKey     BIT STRING
430	       }

432	   GostR3410-2001-PublicKeyAlgorithms  ALGORITHM-IDENTIFIER ::= {
433	       { GostR3410-2001-PublicKeyParameters IDENTIFIED BY
434	                       id-GostR3410-2001 } }

436	   GostR3410-2001-PublicKeyParameters ::=
437	       SEQUENCE {
438	           publicKeyParamSet
439	               OBJECT IDENTIFIER,
440	           digestParamSet
441	               OBJECT IDENTIFIER,
442	           encryptionParamSet
443	               OBJECT IDENTIFIER OPTIONAL
444	       }

446	   *  publicKeyParamSet - public key parameters identifier for  GOST R
447	   34.10-2001;
448	   *  digestParamSet - parameters identifier for GOST R 34.11-94;
449	   *  encryptionParamSet - optional parameters identifier for GOST
450	   28147-89 MAY be presented anytime and MUST be presented if keyUsage
451	   differs from digitalSignature, nonRepudiation, keyCertSign and
452	   cRLSign.

454	   AlgorithmIdentifier within subjectPublicKeyInfo takes place only if a
455	   certificate could contain parameters. If GOST R 34.10-2001 algorithm
456	   parameters are omitted in subjectPublicKeyInfo, and CA signs subject
457	   certificate using GOST R 34.10-2001, then GOST R 34.10-2001
458	   parameters taken from subjectPublicKeyInfo field of issuer
459	   certificate are applicable to public key of GOST R 34.10-2001
460	   subject. That is, cryptographic parameters inheritance takes place.
461	   If subjectPublicKeyInfo AlgorithmIdentifier field contain no
462	   parameters, but CA sign certificate using signature algorithm
463	   different from GOST R 34.10-2001, then certificate users MUST reject
464	   it.

466	   GOST R 34.10-2001 public key MUST be ASN.1 encoded in a following
467	   way. GOST R 34.10-2001 specifies that public key is a point on the
468	   elliptic curve Q = dP,  where d is a private key, P is a base point,
469	   and Q presents in a way of 512-bit vector  (<Xq>256||<Yq>256). This
470	   vector DER-encoded as two data blocks. At first, <Xq>256 block, then
471	   <Yq>256 block. subjectPublicKey field BIT STRING type is presented as
472	   a  taken up object  GostR3410-2001-PublicKeyOctetString.

474	   At that, least-significant of the first octet
475	   (GostR3410-2001-PublicKeyOctetString[0]) corresponds to least-
476	   significant (1-st) of vector  <Xq>256||<Yq>256 (Yq1 =
477	   (GostR3410-2001-PublicKeyOctetString[0] & 1)).

479	   Whereas most-significant of  64-th octet
480	   (GostR3410-2001-PublicKeyOctetString[63]) corresponds to most-
481	   significant  (512-d)  of vector  <Xq>256||<Yq>256 (Xq256 =
482	   ((GostR3410-2001-PublicKeyOctetString[63] & 0x80)>>7)).

484	   In other words, <Xq>256||<Yq>256 vector is stored in little-endian,
485	   that correspond binary vector form and their concatenation in GOST R
486	   34.10-2001 ch. 5.3.  At first, key is placed in OCTET STRING, than is
487	   DER-encoded and placed in BIT STRING.

489	   GostR3410-2001-PublicKey ::= BIT STRING

491	   GostR3410-2001-PublicKeyOctetString ::= OCTET STRING

493	   If the keyUsage extension is present in an end-entity certificate,
494	   which conveys a GOST R 34.10-2001 public key, the following values
495	   MAY be present:

497	      digitalSignature;
498	      nonRepudiation.
499	      keyEncipherment;
500	      keyAgreement.

502	   If the keyAgreement or keyEnchiperment extension is present in a
503	   certificate, the following values MAY be present:

505	      encipherOnly;
506	      decipherOnly.

508	   The keyUsage extension MUST NOT assert both encipherOnly and
509	   decipherOnly.

511	   If the keyUsage extension is present in an CA or CRL signer
512	   certificate which contain a GOST R 34.10-2001 public key, the
513	   following values MAY be present:

515	      digitalSignature;
516	      nonRepudiation;
517	      keyCertSign;
518	      cRLSign.

520	3  Algorithm Parameters

522	   Cryptographic algorithm parameters in certificates and CRL are
523	   indicated by appropriate OID. Algorithm parameters OID, proposed
524	   hereby, are the next.

526	   For hash function parameters GOST R 34.11-94:

528	   id-CryptoPro-hashes OBJECT IDENTIFIER ::=
529	      { iso(1) member-body(2) ru(643) rans(2) cryptopro(2) hashes(30) }

531	   id-GostR3411-94-TestParamSet OBJECT IDENTIFIER ::=
532	      { id-CryptoPro-hashes test(0) }

534	   id-GostR3411-94-CryptoProParamSet OBJECT IDENTIFIER ::=
535	      { id-CryptoPro-hashes cryptopro(1) }

537	   For public key parameters GOST R 34.10-94:

539	   id-CryptoPro-signs OBJECT IDENTIFIER ::=
540	      { iso(1) member-body(2) ru(643) rans(2) cryptopro(2) signs(32) }

542	   id-GostR3410-94-TestParamSet OBJECT IDENTIFIER ::=
543	      { id-CryptoPro-signs test(0) }

545	   id-GostR3410-94-CryptoPro-A-ParamSet OBJECT IDENTIFIER ::=
546	      { id-CryptoPro-signs cryptopro-A(2) }

548	   id-GostR3410-94-CryptoPro-B-ParamSet OBJECT IDENTIFIER ::=
549	      { id-CryptoPro-signs cryptopro-B(3) }

551	   id-GostR3410-94-CryptoPro-C-ParamSet OBJECT IDENTIFIER ::=
552	      { id-CryptoPro-signs cryptopro-C(4) }

554	   id-GostR3410-94-CryptoPro-D-ParamSet OBJECT IDENTIFIER ::=
555	      { id-CryptoPro-signs cryptopro-D(5) }

557	   For public key parameters GOST R 34.10-2001:

559	   id-CryptoPro-ecc-signs OBJECT IDENTIFIER ::= { iso(1) member-body(2)
560	   ru(643) rans(2) cryptopro(2) ecc-signs(35) }

562	   id-GostR3410-2001-TestParamSet OBJECT IDENTIFIER ::=
563	      { id-CryptoPro-ecc-signs test(0) }

565	   id-GostR3410-2001-CryptoPro-A-ParamSet OBJECT IDENTIFIER ::=
566	      { id-CryptoPro-ecc-signs cryptopro-A(1) }

568	   id-GostR3410-2001-CryptoPro-B-ParamSet OBJECT IDENTIFIER ::=
569	      { id-CryptoPro-ecc-signs cryptopro-B(2) }

571	   id-GostR3410-2001-CryptoPro-C-ParamSet OBJECT IDENTIFIER ::=
572	      { id-CryptoPro-ecc-signs cryptopro-C(3) }

574	   Specific further parameter values are presented in Appendix.

576	   If any organization needs to assign their own parameters, they should
577	   be described and MUST be  published in a way of appendix to this
578	   document or in other way in following forms:

580	3.1  GOST R 34.11-94 Parameters

582	   Hash function parameters GOST R 34.11-94 according to [GOSTR3411]:

584	   GostR3411-94-ParamSetParameters ::=
585	      SEQUENCE {
586	          hUZ Gost28147-89-UZ,
587	          h0  GostR3411-94-Digest
588	      }

590	   hUZ - S-box [GOSTR3411], [GOST28147].

592	   h0  - initializing value(IV) [GOSTR3411].

594	3.2  GOST R 34.10-94 Parameters

596	    algorithm parameters GOST R 34.10-94 according to [GOSTR341094]:

598	   GostR3410-94-ParamSetParameters ::=
599	      SEQUENCE {
600	          p       INTEGER,
601	          q       INTEGER,
602	          a       INTEGER,
603	          validationAlgorithm
604	         AlgorithmIdentifier {{
605	            GostR3410-94-ValidationAlgorithms
606	            }} OPTIONAL
607	      }

609	   p - modulus, prime number, 2^1023<p<2^1024;
610	   q - order of cyclic group, prime number, 2^254<q<2^256, q is a factor
611	   of p-1;
612	   a - generator, integer, 1<a<p-1, at that aq (mod p) = 1;
613	   validationAlgorithm - constant p, q and a calculating algorithm.

615	GostR3410-94-ValidationParameters ::=
616	      SEQUENCE {
617	          t       INTEGER,
618	          x0      INTEGER,
619	          c       INTEGER,
620	          d       INTEGER OPTIONAL
621	      }

623	   t  - bit length of p;
624	   x0 - seed;
625	   c  - used for p and q generation;
626	   d  - used for a generation.

628	3.3  GOST R 34.10-2001 Parameters

630	   Public key algorithm parameters GOST R 34.11-2001 according to
631	   [GOSTR34102001]:

633	   GostR3410-2001-ParamSetParameters ::=
634	      SEQUENCE {
635	          abj CHOICE {
636	              ab SEQUENCE {
637	                  a       INTEGER,
638	                  b       INTEGER,
639	              },
640	              j       INTEGER,
641	          },
642	          p       INTEGER ,
643	          q       INTEGER ,
644	          x       INTEGER ,
645	          y       INTEGER
646	      }

648	   a, b - coefficients a and b of the elliptic curve E;
649	   j    - invariant;
650	   p    - prime number - elliptic curve modulus;
651	   q    - prime number - order of cyclic group;
652	   x, y - base point p coordinates.

654	4  Security Considerations

656	   Parameter values for using cryptographic algorithms affect rigidity
657	   of information protection system. It is RECCOMENDED, that software
658	   applications verify signature values, subject public keys and
659	   algorithm parameters to conform to [GOSTR34102001], [GOSTR341094]
660	   standards prior to their use.

662	   The algorithm parameters proposed hereby and described in this
663	   document, have been analyzed by special certification laboratory of
664	   Scientific and Technical Centre "ATLAS" and by Centre of
665	   Certificational Investigations in appropriate levels of
666	   target_of_evaluation (TOE).

668	   In case of different parameters usage, it is RECCOMENDED that they
669	   are to be examined by authorized agency with an approved  methods of
670	   cryptographic analysis.

672	5  Appendix ASN.1 Moduls
673	5.1  Cryptographic-Gost-Useful-Definitions

675	-- Copyright(C) CRYPTO-PRO Company
676	Cryptographic-Gost-Useful-Definitions
677	    { iso(1) member-body(2) ru(643) rans(2) cryptopro(2)
678	      other(1) modules(1) cryptographic-Gost-Useful-Definitions(0)
679	1 }
680	DEFINITIONS ::=
681	BEGIN
682	-- EXPORTS All --
683	-- The types and values defined in this module are exported for
684	-- use in the other ASN.1 modules contained within the Russian
685	-- Cryptography "GOST" & "GOST R" Specifications, and for the use
686	-- of other applications which will use them to access Russian
687	-- Cryptography services. Other applications may use them for
688	-- their own purposes, but this will not constrain extensions and
689	-- modifications needed to maintain or improve the Russian
690	-- Cryptography service.
691	  -- Crypto-Pro OID branch
692	    id-CryptoPro OBJECT IDENTIFIER ::=
693	        { iso(1) member-body(2) ru(643) rans(2) cryptopro(2) }
694	    id-CryptoPro-algorithms OBJECT IDENTIFIER ::=
695	        id-CryptoPro
696	    id-CryptoPro-modules OBJECT IDENTIFIER ::=
697	        { id-CryptoPro other(1) modules(1) }
698	    id-CryptoPro-hashes OBJECT IDENTIFIER ::=
699	        { id-CryptoPro-algorithms hashes(30) }
700	    id-CryptoPro-encrypts OBJECT IDENTIFIER ::=
701	        { id-CryptoPro-algorithms encrypts(31) }
702	    id-CryptoPro-signs OBJECT IDENTIFIER ::=
703	        { id-CryptoPro-algorithms signs(32) }
704	    id-CryptoPro-exchanges OBJECT IDENTIFIER ::=
705	        { id-CryptoPro-algorithms exchanges(33) }
706	    id-CryptoPro-extensions OBJECT IDENTIFIER ::=
707	            { id-CryptoPro extensions(34) }
708	    id-CryptoPro-ecc-signs OBJECT IDENTIFIER ::=
709	        { id-CryptoPro-algorithms ecc-signs(35) }
710	    id-CryptoPro-ecc-exchanges OBJECT IDENTIFIER ::=
711	        { id-CryptoPro-algorithms ecc-exchanges(36) }
712	    id-CryptoPro-private-keys OBJECT IDENTIFIER ::=
713	        { id-CryptoPro-algorithms private-keys(37) }
714	    id-CryptoPro-policyQt OBJECT IDENTIFIER ::=
715	            { id-CryptoPro policyQt(39) }
716	    id-CryptoPro-policyIds OBJECT IDENTIFIER ::=
717	      { id-CryptoPro policyIds(38) }
718	    id-CryptoPro-attributes OBJECT IDENTIFIER ::=
719	      { id-CryptoPro-algorithms attributes(38) }
720	    id-CryptoPro-pkixcmp-infos OBJECT IDENTIFIER ::=
721	      { id-CryptoPro-algorithms pkixcmp-infos(39) }
722	  -- ASN.1 modules of Russian Cryptography "GOST" & "GOST R"
723	  -- Specifications
724	    cryptographic-Gost-Useful-Definitions OBJECT IDENTIFIER ::=
725	        { id-CryptoPro-modules
726	          cryptographic-Gost-Useful-Definitions(0) 1 }
727	  -- GOST R 34.11-94

729	    gostR3411-94-DigestSyntax OBJECT IDENTIFIER ::=
730	        { id-CryptoPro-modules gostR3411-94-DigestSyntax(1) 1 }
731	    gostR3411-94-ParamSetSyntax OBJECT IDENTIFIER ::=
732	        { id-CryptoPro-modules gostR3411-94-ParamSetSyntax(7) 1 }
733	  -- GOST R 34.10-94

735	    gostR3410-94-PKISyntax OBJECT IDENTIFIER ::=
736	        { id-CryptoPro-modules  gostR3410-94-PKISyntax(2) 1 }
737	    gostR3410-94-SignatureSyntax OBJECT IDENTIFIER ::=
738	        { id-CryptoPro-modules gostR3410-94-SignatureSyntax(3) 1 }
739	    gostR3410-94-EncryptionSyntax OBJECT IDENTIFIER ::=
740	        { id-CryptoPro-modules gostR3410-94-EncryptionSyntax(5) 2 }
741	    gostR3410-94-ParamSetSyntax OBJECT IDENTIFIER ::=
742	        { id-CryptoPro-modules  gostR3410-94-ParamSetSyntax(8) 1 }
743	  -- GOST R 34.10-2001

745	    gostR3410-2001-PKISyntax OBJECT IDENTIFIER ::=
746	        { id-CryptoPro-modules  gostR3410-2001-PKISyntax(9) 1 }
747	    gostR3410-2001-SignatureSyntax OBJECT IDENTIFIER ::=
748	        { id-CryptoPro-modules
749	          gostR3410-2001-SignatureSyntax(10) 1 }
750	    gostR3410-2001-EncryptionSyntax OBJECT IDENTIFIER ::=
751	        { id-CryptoPro-modules
752	          gostR3410-2001-EncryptionSyntax(11) 2 }
753	    gostR3410-2001-ParamSetSyntax OBJECT IDENTIFIER ::=
754	        { id-CryptoPro-modules
755	          gostR3410-2001-ParamSetSyntax(12) 1 }
756	  -- GOST 28147-89

758	    gost28147-89-EncryptionSyntax OBJECT IDENTIFIER ::=
759	        { id-CryptoPro-modules gost28147-89-EncryptionSyntax(4) 1 }
760	    gost28147-89-ParamSetSyntax OBJECT IDENTIFIER ::=
761	        { id-CryptoPro-modules gost28147-89-ParamSetSyntax(6) 1 }
762	  -- Extended Key Usage for Crypto-Pro

764	    gost-CryptoPro-ExtendedKeyUsage OBJECT IDENTIFIER ::=
765	        { id-CryptoPro-modules
766	          gost-CryptoPro-ExtendedKeyUsage(13) 1 }
767	  -- Crypto-Pro Private keys
768	    gost-CryptoPro-PrivateKey OBJECT IDENTIFIER ::=
769	        { id-CryptoPro-modules gost-CryptoPro-PrivateKey(14) 1 }
770	  -- Crypto-Pro Policy
771	    gost-CryptoPro-Policy OBJECT IDENTIFIER ::=
772	        { id-CryptoPro-modules gost-CryptoPro-Policy(15) 1 }
773	  -- Crypto-Pro PKIXCMP structures

775	    gost-CryptoPro-PKIXCMP OBJECT IDENTIFIER ::=
776	      { id-CryptoPro-modules gost-CryptoPro-PKIXCMP(16) 1 }

778	  -- External ASN.1 modules for Russian Cryptography
779	    id-external-PKIX1Explicit93 OBJECT IDENTIFIER ::=
780	        { iso(1) identified-organization(3)
781	          dod(6) internet(1) security(5) mechanisms(5) pkix(7)
782	          id-mod(0) id-pkix1-explicit-93(3)
783	        }
784	  -- Useful types
785	    ALGORITHM-IDENTIFIER ::= TYPE-IDENTIFIER
786	    AlgorithmIdentifier { ALGORITHM-IDENTIFIER:InfoObjectSet } ::=
787	        SEQUENCE {
788	            algorithm
789	          ALGORITHM-IDENTIFIER.&id({InfoObjectSet}),
790	            parameters
791	          ALGORITHM-IDENTIFIER.&Type({InfoObjectSet} {@algorithm})
792	               OPTIONAL
793	        }
794	END -- Cryptographic-Gost-Useful-Definitions

796	5.2  GostR3411-94-DigestSyntax

798	-- Copyright(C) CRYPTO-PRO Company
799	GostR3411-94-DigestSyntax
800	    { iso(1) member-body(2) ru(643) rans(2) cryptopro(2)
801	      other(1) modules(1) gostR3411-94-DigestSyntax(1) 1 }
802	DEFINITIONS ::=
803	BEGIN
804	-- EXPORTS All --
805	-- The types and values defined in this module are exported for
806	-- use in the other ASN.1 modules contained within the Russian
807	-- Cryptography "GOST" & "GOST R" Specifications, and for the use
808	-- of other applications which will use them to access Russian
809	-- Cryptography services. Other applications may use them for
810	-- their own purposes, but this will not constrain extensions and
811	-- modifications needed to maintain or improve the Russian
812	-- Cryptography service.
813	    IMPORTS
814	        id-CryptoPro-algorithms, id-CryptoPro-hashes,
815	        gost28147-89-EncryptionSyntax,
816	        cryptographic-Gost-Useful-Definitions
817	        FROM Cryptographic-Gost-Useful-Definitions
818	            { iso(1) member-body(2) ru(643) rans(2)
819	              cryptopro(2) other(1) modules(1)
820	              cryptographic-Gost-Useful-Definitions(0) 1 }
821	        Gost28147-89-Data, Gost28147-89-UZ
822	        FROM Gost28147-89-EncryptionSyntax
823	             gost28147-89-EncryptionSyntax
824	        AlgorithmIdentifier, ALGORITHM-IDENTIFIER
825	        FROM Cryptographic-Gost-Useful-Definitions
826	             cryptographic-Gost-Useful-Definitions
827	    ;
828	  -- GOST R 34.11-94 OID
829	    id-GostR3411-94 OBJECT IDENTIFIER ::=
830	        { id-CryptoPro-algorithms gostR3411-94(9) }
831	  -- GOST R 34.11-94 Cryptographic Parameters Set OIDs
832	    id-GostR3411-94-TestParamSet OBJECT IDENTIFIER ::=
833	        { id-CryptoPro-hashes test(0) }
834	    id-GostR3411-94-CryptoProParamSet OBJECT IDENTIFIER ::=
835	        { id-CryptoPro-hashes cryptopro(1) }
836	  -- GOST R 34.11-94 Data Types
837	    GostR3411-94-Data ::= Gost28147-89-Data
838	    GostR3411-94-Digest ::= OCTET STRING (SIZE (32))
839	  -- GOST R 34.11-94 Digest Parameters & Algorithms
840	    GostR3411-94-DigestParameters ::=
841	        OBJECT IDENTIFIER (
842	          id-GostR3411-94-TestParamSet |     -- Only for tests use
843	          id-GostR3411-94-CryptoProParamSet
844	        )
845	    GostR3411-94-DigestAlgorithms ALGORITHM-IDENTIFIER ::= {
846	        { NULL IDENTIFIED BY id-GostR3411-94 } |
847	          -- Assume id-GostR3411-94-CryptoProParamSet
848	        { GostR3411-94-DigestParameters
849	          IDENTIFIED BY id-GostR3411-94 }
850	    }
851	END -- GostR3411-94-DigestSyntax

853	5.3  GostR3411-94-ParamSetSyntax

855	-- Copyright(C) CRYPTO-PRO Company
856	GostR3411-94-ParamSetSyntax
857	    { iso(1) member-body(2) ru(643) rans(2) cryptopro(2)
858	      other(1) modules(1) gostR3411-94-ParamSetSyntax(7) 1 }
859	DEFINITIONS ::=
860	BEGIN
861	-- EXPORTS All --
862	-- The types and values defined in this module are exported for
863	-- use in the other ASN.1 modules contained within the Russian
864	-- Cryptography "GOST" & "GOST R" Specifications, and for the use
865	-- of other applications which will use them to access Russian
866	-- Cryptography services. Other applications may use them for
867	-- their own purposes, but this will not constrain extensions and
868	-- modifications needed to maintain or improve the Russian
869	-- Cryptography service.
870	    IMPORTS
871	        id-CryptoPro-algorithms, id-CryptoPro-hashes,
872	        gost28147-89-EncryptionSyntax,
873	        gostR3411-94-DigestSyntax,
874	        cryptographic-Gost-Useful-Definitions
875	        FROM Cryptographic-Gost-Useful-Definitions
876	            { iso(1) member-body(2) ru(643) rans(2)
877	              cryptopro(2) other(1) modules(1)
878	              cryptographic-Gost-Useful-Definitions(0) 1 }
879	        Gost28147-89-UZ
880	        FROM Gost28147-89-EncryptionSyntax
881	             gost28147-89-EncryptionSyntax
882	        id-GostR3411-94-TestParamSet,
883	        id-GostR3411-94-CryptoProParamSet,
884	        GostR3411-94-Digest
885	        FROM GostR3411-94-DigestSyntax gostR3411-94-DigestSyntax
886	        AlgorithmIdentifier, ALGORITHM-IDENTIFIER
887	        FROM Cryptographic-Gost-Useful-Definitions
888	             cryptographic-Gost-Useful-Definitions
889	    ;
890	  -- GOST R 34.11-94 Cryptographic Parameters Set:
891	  -- algorithm & parameters
892	  -- OID for Parameters Set imported from GostR3411-94-DigestSyntax
893	    GostR3411-94-ParamSetParameters ::=
894	        SEQUENCE {
895	            hUZ Gost28147-89-UZ,    -- S-Box for digest
896	            h0  GostR3411-94-Digest -- start digest value
897	        }
898	    GostR3411-94-ParamSetAlgorithms ALGORITHM-IDENTIFIER ::= {
899	        { GostR3411-94-ParamSetParameters IDENTIFIED BY
900	          id-GostR3411-94-TestParamSet
901	        } |
902	        { GostR3411-94-ParamSetParameters IDENTIFIED BY
903	          id-GostR3411-94-CryptoProParamSet
904	        }
905	    }
906	    -- GOST R 34.11-94 Tests parameters set
907	    -- (GOST R 34.11-94 Annex A. Test vector)
908	    gostR3411TestParamSetAI AlgorithmIdentifier
909	     {{ GostR3411-94-ParamSetAlgorithms }} ::=
910	        {
911	            algorithm

913	          id-GostR3411-94-TestParamSet,
914	            parameters
915	          GostR3411-94-ParamSetParameters:{
916	              hUZ
917	                 -- pi1 pi2 pi3 pi4 pi5 pi6 pi7 pi8
918	                 -- 4   E   5   7   6   4   D   1
919	                 -- A   B   8   D   C   B   B   F
920	                 -- 9   4   1   A   7   A   4   D
921	                 -- 2   C   D   1   1   0   1   0
922	                 -- D   6   A   0   5   7   3   5
923	                 -- 8   D   3   8   F   2   F   7
924	                 -- 0   F   4   9   D   1   5   A
925	                 -- E   A   2   F   8   D   9   4
926	                 -- 6   2   E   E   4   3   0   9
927	                 -- B   3   F   4   A   6   A   2
928	                 -- 1   8   C   6   9   8   E   3
929	                 -- C   1   7   C   E   5   7   E
930	                 -- 7   0   6   B   0   9   6   6
931	                 -- F   7   0   2   3   C   8   B
932	                 -- 5   5   9   5   B   F   2   8
933	                 -- 3   9   B   3   2   E   C   C
934	                   '4E5764D1AB8DCBBF941A7A4D2CD11010D6A057358D38F2F7
935	0F49D15AEA2F8D9462EE4309B3F4A6A218C698E3C17CE57E706B0966F7023C8B559
936	5BF2839B32ECC'H,
937	              h0   '000000000000000000000000000000000000000000000000
938	0000000000000000'H
939	          }
940	        }
941	    -- CryptoPro parameters
942	    gostR3411CryptoProParamSetAI AlgorithmIdentifier
943	    {{ GostR3411-94-ParamSetAlgorithms }} ::=
944	        {
945	            algorithm
946	          id-GostR3411-94-CryptoProParamSet,
947	            parameters
948	          GostR3411-94-ParamSetParameters:{
949	              hUZ
950	                 -- pi1 pi2 pi3 pi4 pi5 pi6 pi7 pi8
951	                 -- A   5   7   4   7   7   D   1
952	                 -- 4   F   F   A   6   6   E   3
953	                 -- 5   4   C   7   4   2   4   A
954	                 -- 6   0   E   C   B   4   1   9
955	                 -- 8   2   9   0   9   D   7   5
956	                 -- 1   D   4   F   C   9   0   B
957	                 -- 3   B   1   2   2   F   5   4
958	                 -- 7   9   0   8   A   0   A   F
959	                 -- D   1   3   E   1   A   3   8
960	                 -- C   7   B   1   8   1   C   6
961	                 -- E   6   5   6   0   5   8   7
962	                 -- 0   3   2   5   E   B   F   E
963	                 -- 9   C   6   D   F   8   6   D
964	                 -- 2   E   A   B   D   E   2   0
965	                 -- B   A   8   9   3   C   9   2
966	                 -- F   8   D   3   5   3   B   C
967	                'A57477D14FFA66E354C7424A60ECB41982909D751D4FC90B3B122F5
968	47908A0AFD13E1A38C7B181C6E65605870325EBFE9C6DF86D2EABDE20BA893C92F8
969	D353BC'H,
970	              h0   '000000000000000000000000000000000000000000000000
971	0000000000000000'H
972	          }
973	        }
974	END -- GostR3411-94-ParamSetSyntax

976	5.4  GostR3410-94-PKISyntax

978	-- Copyright(C) CRYPTO-PRO Company
979	GostR3410-94-PKISyntax
980	    { iso(1) member-body(2) ru(643) rans(2) cryptopro(2)
981	      other(1) modules(1) gostR3410-94-PKISyntax(2) 1 }
982	DEFINITIONS ::=
983	BEGIN
984	-- EXPORTS All --
985	-- The types and values defined in this module are exported for
986	-- use in the other ASN.1 modules contained within the Russian
987	-- Cryptography "GOST" & "GOST R" Specifications, and for the use
988	-- of other applications which will use them to access Russian
989	-- Cryptography services. Other applications may use them for
990	-- their own purposes, but this will not constrain extensions and
991	-- modifications needed to maintain or improve the Russian
992	-- Cryptography service.
993	    IMPORTS
994	        id-CryptoPro-algorithms,
995	        id-CryptoPro-signs, id-CryptoPro-exchanges,
996	        gost28147-89-EncryptionSyntax,
997	        gostR3411-94-DigestSyntax,
998	        cryptographic-Gost-Useful-Definitions
999	        FROM Cryptographic-Gost-Useful-Definitions
1000	            { iso(1) member-body(2) ru(643) rans(2)
1001	              cryptopro(2) other(1) modules(1)
1002	              cryptographic-Gost-Useful-Definitions(0) 1 }
1003	        id-Gost28147-89-TestParamSet,
1004	        id-Gost28147-89-CryptoPro-A-ParamSet,
1005	        id-Gost28147-89-CryptoPro-B-ParamSet,
1006	        id-Gost28147-89-CryptoPro-C-ParamSet,
1007	        id-Gost28147-89-CryptoPro-D-ParamSet,
1008	        id-Gost28147-89-CryptoPro-Simple-A-ParamSet,
1009	        id-Gost28147-89-CryptoPro-Simple-B-ParamSet,
1010	        id-Gost28147-89-CryptoPro-Simple-C-ParamSet,
1011	        id-Gost28147-89-CryptoPro-Simple-D-ParamSet
1012	        FROM Gost28147-89-EncryptionSyntax
1013	             gost28147-89-EncryptionSyntax
1014	        id-GostR3411-94-TestParamSet,
1015	        id-GostR3411-94-CryptoProParamSet
1016	        FROM GostR3411-94-DigestSyntax gostR3411-94-DigestSyntax
1017	        AlgorithmIdentifier, ALGORITHM-IDENTIFIER
1018	        FROM Cryptographic-Gost-Useful-Definitions
1019	             cryptographic-Gost-Useful-Definitions
1020	    ;
1021	  -- GOST R 34.10-94 OIDs
1022	    id-GostR3410-94 OBJECT IDENTIFIER ::=
1023	        { id-CryptoPro-algorithms gostR3410-94(20) }
1024	    id-GostR3411-94-with-GostR3410-94 OBJECT IDENTIFIER ::=
1025	        { id-CryptoPro-algorithms
1026	          gostR3411-94-with-gostR3410-94(4) }
1027	  -- GOST R 34.10-94 Public Key Cryptographic Parameters Set OIDs
1028	    id-GostR3410-94-TestParamSet OBJECT IDENTIFIER ::=
1029	        { id-CryptoPro-signs test(0) }
1030	    id-GostR3410-94-CryptoPro-A-ParamSet OBJECT IDENTIFIER ::=
1031	        { id-CryptoPro-signs cryptopro-A(2) }
1032	    id-GostR3410-94-CryptoPro-B-ParamSet OBJECT IDENTIFIER ::=
1033	        { id-CryptoPro-signs cryptopro-B(3) }
1034	    id-GostR3410-94-CryptoPro-C-ParamSet OBJECT IDENTIFIER ::=
1035	        { id-CryptoPro-signs cryptopro-C(4) }
1036	    id-GostR3410-94-CryptoPro-D-ParamSet OBJECT IDENTIFIER ::=
1037	        { id-CryptoPro-signs cryptopro-D(5) }
1038	    id-GostR3410-94-CryptoPro-XchA-ParamSet OBJECT IDENTIFIER ::=
1039	        { id-CryptoPro-exchanges cryptopro-XchA(1) }
1040	    id-GostR3410-94-CryptoPro-XchB-ParamSet OBJECT IDENTIFIER ::=
1041	        { id-CryptoPro-exchanges cryptopro-XchB(2) }
1042	    id-GostR3410-94-CryptoPro-XchC-ParamSet OBJECT IDENTIFIER ::=
1043	        { id-CryptoPro-exchanges cryptopro-XchC(3) }
1044	  -- GOST R 34.10-94 Data Types
1045	    GostR3410-94-CertificateSignature ::=
1046	        BIT STRING ( SIZE(256..512) )
1047	    GostR3410-94-PublicKeyOctetString ::=
1048	        OCTET STRING ( SIZE(
1049	               64 | -- Only for tests use
1050	               128
1051	               ) )
1052	    GostR3410-94-PublicKey ::=
1053	        BIT STRING ( SIZE(16..1048) )
1054	               -- Container for GostR3410-94-PublicKeyOctetString
1055	    GostR3410-94-PublicKeyParameters ::=
1056	            SEQUENCE {
1057	            publicKeyParamSet
1058	          OBJECT IDENTIFIER (
1059	              id-GostR3410-94-TestParamSet | -- Only for tests use
1060	              id-GostR3410-94-CryptoPro-A-ParamSet |
1061	              id-GostR3410-94-CryptoPro-B-ParamSet |
1062	              id-GostR3410-94-CryptoPro-C-ParamSet |
1063	              id-GostR3410-94-CryptoPro-D-ParamSet |
1064	              id-GostR3410-94-CryptoPro-XchA-ParamSet |
1065	              id-GostR3410-94-CryptoPro-XchB-ParamSet |
1066	              id-GostR3410-94-CryptoPro-XchC-ParamSet
1067	          ),
1068	            digestParamSet
1069	          OBJECT IDENTIFIER (
1070	              id-GostR3411-94-TestParamSet | -- Only for tests use
1071	              id-GostR3411-94-CryptoProParamSet
1072	          ),
1073	            encryptionParamSet
1074	          OBJECT IDENTIFIER (
1075	              id-Gost28147-89-TestParamSet | -- Only for tests use
1076	              id-Gost28147-89-CryptoPro-A-ParamSet |
1077	              id-Gost28147-89-CryptoPro-B-ParamSet |
1078	              id-Gost28147-89-CryptoPro-C-ParamSet |
1079	              id-Gost28147-89-CryptoPro-D-ParamSet |
1080	              id-Gost28147-89-CryptoPro-Simple-A-ParamSet |
1081	              id-Gost28147-89-CryptoPro-Simple-B-ParamSet |
1082	              id-Gost28147-89-CryptoPro-Simple-C-ParamSet |
1083	              id-Gost28147-89-CryptoPro-Simple-D-ParamSet
1084	          ) OPTIONAL
1085	        }
1086	    GostR3410-94-PublicKeyAlgorithms  ALGORITHM-IDENTIFIER ::= {
1087	        { GostR3410-94-PublicKeyParameters IDENTIFIED BY
1088	               id-GostR3410-94 }
1089	    }
1090	    GostR3410-94-CertificateSignatureAlgorithms
1091	        ALGORITHM-IDENTIFIER ::= {
1092	          { NULL IDENTIFIED BY
1093	               id-GostR3411-94-with-GostR3410-94 } |
1094	          { GostR3410-94-PublicKeyParameters IDENTIFIED BY
1095	               id-GostR3411-94-with-GostR3410-94 }
1096	        }
1097	END -- GostR3410-94-PKISyntax

1099	5.5  GostR3410-94-ParamSetSyntax

1101	-- Copyright(C) CRYPTO-PRO Company
1102	GostR3410-94-ParamSetSyntax
1103	    { iso(1) member-body(2) ru(643) rans(2) cryptopro(2)
1104	      other(1) modules(1) gostR3410-94-ParamSetSyntax(8) 1 }

1106	DEFINITIONS ::=
1107	BEGIN
1108	-- EXPORTS All --
1109	-- The types and values defined in this module are exported for
1110	-- use in the other ASN.1 modules contained within the Russian
1111	-- Cryptography "GOST" & "GOST R" Specifications, and for the use
1112	-- of other applications which will use them to access Russian
1113	-- Cryptography services. Other applications may use them for
1114	-- their own purposes, but this will not constrain extensions and
1115	-- modifications needed to maintain or improve the Russian
1116	-- Cryptography service.
1117	    IMPORTS
1118	        id-CryptoPro-algorithms,
1119	        id-CryptoPro-signs, id-CryptoPro-exchanges,
1120	        gostR3410-94-PKISyntax,
1121	        cryptographic-Gost-Useful-Definitions
1122	        FROM Cryptographic-Gost-Useful-Definitions
1123	            { iso(1) member-body(2) ru(643) rans(2)
1124	              cryptopro(2) other(1) modules(1)
1125	              cryptographic-Gost-Useful-Definitions(0) 1 }
1126	        id-GostR3410-94,
1127	        id-GostR3410-94-TestParamSet,
1128	        id-GostR3410-94-CryptoPro-A-ParamSet,
1129	        id-GostR3410-94-CryptoPro-B-ParamSet,
1130	        id-GostR3410-94-CryptoPro-C-ParamSet,
1131	        id-GostR3410-94-CryptoPro-D-ParamSet,
1132	        id-GostR3410-94-CryptoPro-XchA-ParamSet,
1133	        id-GostR3410-94-CryptoPro-XchB-ParamSet,
1134	        id-GostR3410-94-CryptoPro-XchC-ParamSet
1135	        FROM GostR3410-94-PKISyntax gostR3410-94-PKISyntax
1136	        AlgorithmIdentifier, ALGORITHM-IDENTIFIER
1137	        FROM Cryptographic-Gost-Useful-Definitions
1138	             cryptographic-Gost-Useful-Definitions
1139	    ;
1140	  -- GOST R 34.10-94 Public Key Cryptographic Parameters Set:
1141	  -- algorithm & parameters
1142	  -- OID for Parameters Set imported from GostR3410-94-PKISyntax
1143	    GostR3410-94-ParamSetParameters ::=
1144	        SEQUENCE {
1145	            t    INTEGER (512 | 1024),  -- 512 - only for tests use
1146	            p    INTEGER (
1147	               167597599124282463744675312477573076593492072757404917221
1148	5445180465220503759193372100234287270862928461253982273310756356719
1149	235351493321243304206125760513
1150	               ..
1151	               134078079299425970995740249982058461274793658205923933777
1152	2356144372176403007354697680187429816690342769003185818648605085375
1153	3882811946569946433649006084095
1154	               |
1155	               112355820928894744233081574424314045851123561183894160795
1156	8938007235829223784381019579427983265047100132000711749196208485367
1157	4360550901038905802964414967132773610493339054092829768888725077880
1158	8824658176845053128605523844176464039300921195694088017023227094069
1159	17786643639996702871154982269052209770601514008577
1160	               ..
1161	               179769313486231590772930519078902473361797697894230657273
1162	4300811577326758055009631327084773224075360211201138798713933576587
1163	8976881441662249284743063947412437776789342486548527630221960124609
1164	4119453082952085005768838150682342462881473913110540827237163350510
1165	684586298239947245938479716304835356329624224137215
1166	               ),   -- 2^509 < p < 2^512 or 2^1020 < p < 2^1024
1167	            q       INTEGER (
1168	               289480223093290488558927462521719769633174961664101410098
1169	64396001978282409985
1170	               ..
1171	               115792089237316195423570985008687907853269984665640564039
1172	457584007913129639935
1173	               ),   -- 2^254 < q < 2^256
1174	            a       INTEGER (
1175	               2
1176	               ..
1177	               179769313486231590772930519078902473361797697894230657273
1178	4300811577326758055009631327084773224075360211201138798713933576587
1179	8976881441662249284743063947412437776789342486548527630221960124609
1180	4119453082952085005768838150682342462881473913110540827237163350510
1181	684586298239947245938479716304835356329624224137214
1182	               ),   -- 1 < a < p-1 < 2^1024-1
1183	            validationAlgorithm
1184	          AlgorithmIdentifier {{
1185	                    GostR3410-94-ValidationAlgorithms
1186	               }} OPTIONAL
1187	        }
1188	    GostR3410-94-ParamSetAlgorithm ALGORITHM-IDENTIFIER ::= {
1189	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1190	               id-GostR3410-94-TestParamSet } |
1191	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1192	               id-GostR3410-94-CryptoPro-A-ParamSet  } |
1193	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1194	               id-GostR3410-94-CryptoPro-B-ParamSet  } |
1195	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1196	               id-GostR3410-94-CryptoPro-C-ParamSet  } |
1197	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1198	               id-GostR3410-94-CryptoPro-D-ParamSet  } |
1199	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1200	               id-GostR3410-94-CryptoPro-XchA-ParamSet  } |
1201	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1202	               id-GostR3410-94-CryptoPro-XchB-ParamSet  } |
1203	        { GostR3410-94-ParamSetParameters IDENTIFIED BY
1204	               id-GostR3410-94-CryptoPro-XchC-ParamSet  }
1205	    }
1206	  -- GOST R 34.10-94 validation/constructor
1207	    id-GostR3410-94-a         OBJECT IDENTIFIER ::=
1208	        { id-GostR3410-94 a(1) }
1209	    id-GostR3410-94-aBis OBJECT IDENTIFIER ::=
1210	        { id-GostR3410-94 aBis(2) }
1211	    id-GostR3410-94-b         OBJECT IDENTIFIER ::=
1212	        { id-GostR3410-94 b(3) }
1213	    id-GostR3410-94-bBis OBJECT IDENTIFIER ::=
1214	        { id-GostR3410-94 bBis(4) }
1215	    GostR3410-94-ValidationParameters ::=
1216	        SEQUENCE {
1217	            t    INTEGER (512 | 1024),  -- 512 - only for tests use
1218	            x0   INTEGER (0 .. 65535),
1219	            c    INTEGER (0 .. 65535),
1220	            d    INTEGER (
1221	               2
1222	               ..
1223	               179769313486231590772930519078902473361797697894230657273
1224	4300811577326758055009631327084773224075360211201138798713933576587
1225	8976881441662249284743063947412437776789342486548527630221960124609
1226	4119453082952085005768838150682342462881473913110540827237163350510
1227	684586298239947245938479716304835356329624224137214
1228	               )    -- 1 < d < p-1 < 2^1024-1
1229	               OPTIONAL
1230	        }
1231	    GostR3410-94-ValidationBisParameters ::=
1232	        SEQUENCE {
1233	            t    INTEGER (512 | 1024),  -- 512 - only for tests use
1234	            x0   INTEGER (0 .. 4294967295),
1235	            c    INTEGER (0 .. 4294967295),
1236	            d    INTEGER (
1237	               2
1238	               ..
1239	               179769313486231590772930519078902473361797697894230657273
1240	4300811577326758055009631327084773224075360211201138798713933576587
1241	8976881441662249284743063947412437776789342486548527630221960124609
1242	4119453082952085005768838150682342462881473913110540827237163350510
1243	684586298239947245938479716304835356329624224137214
1244	               )    -- 1 < d < p-1 < 2^1024-1
1245	               OPTIONAL
1246	        }
1247	    GostR3410-94-ValidationAlgorithms  ALGORITHM-IDENTIFIER ::= {
1248	        { GostR3410-94-ValidationParameters IDENTIFIED BY
1249	               id-GostR3410-94-a } |

1251	        { GostR3410-94-ValidationBisParameters IDENTIFIED BY
1252	               id-GostR3410-94-aBis } |
1253	        { GostR3410-94-ValidationParameters IDENTIFIED BY
1254	               id-GostR3410-94-b } |
1255	        { GostR3410-94-ValidationBisParameters IDENTIFIED BY
1256	               id-GostR3410-94-bBis }
1257	    }
1258	  -- GOST R 34.10-94 Keys Parameters sets
1259	    -- GOST R 34.10-94 Tests parameters set
1260	    -- (GOST R 34.10-94 Annex A. Test vector)
1261	    gostR3410-94-TestParamSetAI
1262	        AlgorithmIdentifier {{
1263	            GostR3410-94-ParamSetAlgorithm
1264	        }} ::=
1265	        {
1266	            algorithm
1267	          id-GostR3410-94-TestParamSet,
1268	            parameters
1269	          GostR3410-94-ParamSetParameters:{
1270	              t       512,
1271	              p       1249155479661639739200729184536168101998078908
1272	4728846304013646795466302633346425772369277064638881858428879662416
1273	202925770315709968465491470753112581700067,
1274	              q       6900839799123747821852952871175357885746435622
1275	1556536838757636132646301588781,
1276	              a       8305821956779628193852750508811757244889982632
1277	8218435214910357131733714685287987538317442674072307045274610623217
1278	32669034432746173786958142572929772413468,
1279	              validationAlgorithm {
1280	                   algorithm
1281	                    id-GostR3410-94-a,
1282	                   parameters
1283	                    GostR3410-94-ValidationParameters: {
1284	                        t       512,
1285	                        x0      24265,
1286	                        c       29505,
1287	                        d       2
1288	                       }
1289	                  }
1290	          }
1291	        }
1292	    -- CryptoPro parameters
1293	    gostR3410-94-CryptoPro-A-ParamSetAI
1294	        AlgorithmIdentifier {{
1295	            GostR3410-94-ParamSetAlgorithm
1296	        }} ::=
1297	        {
1298	            algorithm

1300	          id-GostR3410-94-CryptoPro-A-ParamSet,
1301	            parameters
1302	          GostR3410-94-ParamSetParameters:{
1303	              t       1024,
1304	              p       1270212482889324174659070427771764435257876535
1305	0891653581281750726570503126098509849742318833348340118092599999512
1306	0988934130659205614996724254121049274349357074920312769561451689224
1307	1105793112488126102296785346384016935200132889950003622606842227508
1308	13532307004517341633685004541062586971416883686778842537820383,
1309	              q       6836319614495570078444416561182725289510217088
1310	8761442055095051287550314083023,
1311	              a       1009979067550553047720818155359252248698410825
1312	7205345787482351587557714799052927277724415285269929879648335669968
1313	2842027972896052747173175480590485607134746852141928680912561502802
1314	2221856475391909026561163678472701450190667942909301854462163997308
1315	72221732889830323194097355403213400972588322876850946740663962,
1316	              validationAlgorithm {
1317	                   algorithm
1318	                    id-GostR3410-94-bBis,
1319	                   parameters
1320	                    GostR3410-94-ValidationBisParameters: {
1321	                        t       1024,
1322	                        x0      1376285941,
1323	                        c       3996757427
1324	                       }
1325	               }
1326	          }
1327	        }
1328	    --
1329	    gostR3410-94-CryptoPro-B-ParamSetAI
1330	        AlgorithmIdentifier {{
1331	            GostR3410-94-ParamSetAlgorithm
1332	        }} ::=
1333	        {
1334	            algorithm
1335	          id-GostR3410-94-CryptoPro-B-ParamSet,
1336	            parameters
1337	          GostR3410-94-ParamSetParameters:{
1338	              t       1024,
1339	              p       1394548711991158256014096551076907131070417070
1340	5992803179775800145437576535772298409412436852228823983303911468164
1341	8076688236921220737322672160740747771700911134550432053804647694904
1342	6861201130878162407401848004770471573366629262494235712488239685422
1343	21753660143391485680840520336859458494803187341288580489525163,
1344	              q       7988514166341097689762711893575632374730795191
1345	6507639758300472692338873533959,
1346	              a       4294182614861580414387344773795550239267234596
1347	8607143066798112994089471231420027060385216699563848719957657284814
1348	8989097707594626134376694563648827303708389347910808359326479767786
1349	0191534347440096103423131667257868692048219493287863336020338479709
1350	2684342247621055760235016132614780652761028509445403338652341,
1351	              validationAlgorithm {
1352	                   algorithm
1353	                    id-GostR3410-94-bBis,
1354	                   parameters
1355	                    GostR3410-94-ValidationBisParameters: {
1356	                        t       1024,
1357	                        x0      1536654555,
1358	                        c       1855361757,
1359	                        d
1360	   14408629386140014567655490293928205654785780
1361	2241461782996702017713059974755104394739915140611528479102443906273
1362	5788342744854120601660303926203867703556828005895720381811489539897
1363	6594425537561271800850306
1364	                       }
1365	                  }
1366	          }
1367	        }
1368	    --
1369	    gostR3410-94-CryptoPro-C-ParamSetAI
1370	        AlgorithmIdentifier {{
1371	            GostR3410-94-ParamSetAlgorithm
1372	        }} ::=
1373	        {
1374	            algorithm
1375	          id-GostR3410-94-CryptoPro-C-ParamSet,
1376	            parameters
1377	          GostR3410-94-ParamSetParameters:{
1378	              t       1024,
1379	              p       1106246792335119630405189524170170402485862954
1380	8198313837741963962985843959489706089561702242106285255603278638246
1381	7166554392976544029218447478930795186699928278807921929927011428546
1382	5514338758063771104435342935540667126530349962770993207157743542287
1383	62128367184370370914135017194504580505029177050363451780493801,
1384	              q       1134688611998193505648682333788751980432679477
1385	76488510997961231672532899549103,
1386	              a       8165527179708810160178931914153003482262544051
1387	3533581624682494676818766212834782128842865458440139551426222087723
1388	4850237228680222750095022248278662017444940216977164820083536398202
1389	2980248926204808986993355080643323135297253322088194568951085155178
1390	1002210034593705882910730711865530059621499368407371287108323,
1391	              validationAlgorithm {
1392	                   algorithm
1393	                    id-GostR3410-94-bBis,
1394	                   parameters
1395	                    GostR3410-94-ValidationBisParameters: {
1396	                        t       1024,
1397	                        x0      113275885,
1398	                        c       3037364845,
1399	                        d       9175906676429839327
1400	                       }
1401	                  }
1402	          }
1403	        }
1404	    --
1405	    gostR3410-94-CryptoPro-D-ParamSetAI
1406	        AlgorithmIdentifier {{
1407	            GostR3410-94-ParamSetAlgorithm
1408	        }} ::=
1409	        {
1410	            algorithm
1411	          id-GostR3410-94-CryptoPro-D-ParamSet,
1412	            parameters
1413	          GostR3410-94-ParamSetParameters:{
1414	              t       1024,
1415	              p       9054576496219299659042909587746253156113056083
1416	9073897669714048125244222625125560544746208559960915707867135849550
1417	2367419155841859906278010664658095100957847139898194138208715964648
1418	9144930534079207370788905204827306230388377677101736648382398574828
1419	7878912864712014604743266126978496936655180738644364978932149,
1420	              q       1089884357963535069123745914989721926201904875
1421	57619582334771735390599299211593,
1422	              a       7569766110217073017821287578016106280855283803
1423	1095711588295742814192085325890416600170178598582163414003714687551
1424	4127944005628789352666307543926770145985821033659831191739244732511
1425	2254647122523868033159027077276687153434760863504720252982827271461
1426	6901250506168582383843663310897774635410130339267237432548337,
1427	              validationAlgorithm {
1428	                   algorithm
1429	                    id-GostR3410-94-bBis,
1430	                   parameters
1431	                    GostR3410-94-ValidationBisParameters: {
1432	                        t       1024,
1433	                        x0      333089693,
1434	                        c       2699681355,
1435	                        d
1436	   69158877639013014811917446652402788947864438
1437	22142755842460366243252
1438	                       }
1439	                  }
1440	          }
1441	        }
1442	    --
1443	    gostR3410-94-CryptoPro-XchA-ParamSetAI
1444	        AlgorithmIdentifier {{
1445	            GostR3410-94-ParamSetAlgorithm
1446	        }} ::=
1447	        {
1448	            algorithm
1449	          id-GostR3410-94-CryptoPro-XchA-ParamSet,
1450	            parameters
1451	          GostR3410-94-ParamSetParameters:{
1452	              t       1024,
1453	              p       1420117415975634811963682860223180897432761383
1454	9524373876287257344192745939351271897363116607846760036084894662356
1455	7625795282774719212241929071046134208380636394084512691828894000571
1456	5246254452957693493567527289568315417754417631393844571917550968471
1457	07846595662547942312293338483924514339614727760681880609734239,
1458	              q       9177152989655460594558814901838275021729685839
1459	3520724172743325725474374979801,
1460	              a       1335318132727206734338595199483190012179423759
1461	6784748689948235959936964252873471246159040332773182141032801252925
1462	3871914788598993103310567744136196364803064721377826656898686468463
1463	2777101508094011826087702016153249904683329312949209127762411378780
1464	30224355746606283971659376426832674269780880061631528163475887,
1465	              validationAlgorithm {
1466	                   algorithm
1467	                    id-GostR3410-94-bBis,
1468	                   parameters
1469	                    GostR3410-94-ValidationBisParameters: {
1470	                        t       1024,
1471	                        x0      3495862036,
1472	                        c       1177570399,
1473	                        d
1474	   35478896102409188951396470647720832819623918
1475	6534141058228233456746622201867258017799725121699052644608624377641
1476	60334831107459
1477	                       }
1478	                  }
1479	          }
1480	        }
1481	    --
1482	    gostR3410-94-CryptoPro-XchB-ParamSetAI
1483	        AlgorithmIdentifier {{
1484	            GostR3410-94-ParamSetAlgorithm
1485	        }} ::=
1486	        {
1487	            algorithm
1488	          id-GostR3410-94-CryptoPro-XchB-ParamSet,
1489	            parameters
1490	          GostR3410-94-ParamSetParameters:{
1491	              t       1024,
1492	              p       1028946126624994859676552074360530315217970499
1493	9893048882484132448474923022758470167998871003604670704877377286176
1494	1712276940986331539089568784129110109512690503345393869871295783467
1495	2572648683417200196629860561193666752429682367397084815179752036423
1496	59573653368957392061769855284593965042530895046088067160269433,
1497	              q       9109671391802626916582318050603555673628769498
1498	1825930883887968885281641595199,
1499	              a       8890864727828423151699995801875757891031463338
1500	6525791400519736593048131440685857067369829407947744496306656291505
1501	5036082523994437900272386749145996230867832228661977543992816745254
1502	8232986298598753575466286051738837854736167685769017780335804511440
1503	7733371962538423532919394477873664752824509986617878992443177,
1504	              validationAlgorithm {
1505	                   algorithm
1506	                    id-GostR3410-94-bBis,
1507	                   parameters
1508	                    GostR3410-94-ValidationBisParameters: {
1509	                        t       1024,
1510	                        x0      2046851076,
1511	                        c       3541716983,
1512	                        d
1513	   57332667610989476056615969728891533566058787
1514	317492748441827236576904274546146
1515	                       }
1516	                  }
1517	          }
1518	        }
1519	    --
1520	    gostR3410-94-CryptoPro-XchC-ParamSetAI
1521	        AlgorithmIdentifier {{
1522	            GostR3410-94-ParamSetAlgorithm
1523	        }} ::=
1524	        {
1525	            algorithm
1526	          id-GostR3410-94-CryptoPro-XchC-ParamSet,
1527	            parameters
1528	          GostR3410-94-ParamSetParameters:{
1529	              t       1024,
1530	              p       1246996366993477513607147265794064436203408861
1531	3950559892172484557299870737698999651480662364723992859320868822848
1532	7511654383509433276647222625940615560580450040947211826027729977563
1533	5402371690630448079715771649447778447000597419032457722226253269698
1534	37444652835352729304393746106576383349151001715930924115499549,
1535	              q       6787876137336591234380295020065682527118129468
1536	0501479431146754294748422492761,
1537	              a       4430618464297584182473135030809859326863990650
1538	1189417569952700748609973181426950235239623239110557450826919295792
1539	8789387521018677047181623251027516953100431855964837602657827828194
1540	2496055618936965865325513137194483136247773653468410118796740709840
1541	8254969979375560722345106704721086025979309968763193072908334,
1542	              validationAlgorithm {
1543	                   algorithm
1544	                    id-GostR3410-94-bBis,
1545	                   parameters
1546	                    GostR3410-94-ValidationBisParameters: {
1547	                        t       1024,
1548	                        x0      371898640,
1549	                        c       2482514131,
1550	                        d
1551	   39341170171309491894611690922945474002657559
1552	0650016887148241594213466186452691964676993
1553	                       }
1554	                  }
1555	          }
1556	        }
1557	END -- GostR3410-94-ParamSetSyntax

1559	5.6  GostR3410-2001-PKISyntax

1561	-- Copyright(C) CRYPTO-PRO Company
1562	GostR3410-2001-PKISyntax
1563	    { iso(1) member-body(2) ru(643) rans(2) cryptopro(2)
1564	      other(1) modules(1) gostR3410-2001-PKISyntax(9) 1 }
1565	DEFINITIONS ::=
1566	BEGIN
1567	-- EXPORTS All --
1568	-- The types and values defined in this module are exported for
1569	-- use in the other ASN.1 modules contained within the Russian
1570	-- Cryptography "GOST" & "GOST R" Specifications, and for the use
1571	-- of other applications which will use them to access Russian
1572	-- Cryptography services. Other applications may use them for
1573	-- their own purposes, but this will not constrain extensions and
1574	-- modifications needed to maintain or improve the Russian
1575	-- Cryptography service.
1576	    IMPORTS
1577	        id-CryptoPro-algorithms,
1578	        id-CryptoPro-ecc-signs, id-CryptoPro-ecc-exchanges,
1579	        gost28147-89-EncryptionSyntax,
1580	        gostR3411-94-DigestSyntax,
1581	        cryptographic-Gost-Useful-Definitions
1582	        FROM Cryptographic-Gost-Useful-Definitions
1583	            { iso(1) member-body(2) ru(643) rans(2)
1584	              cryptopro(2) other(1) modules(1)
1585	              cryptographic-Gost-Useful-Definitions(0) 1 }
1586	        id-Gost28147-89-TestParamSet,
1587	        id-Gost28147-89-CryptoPro-A-ParamSet,
1588	        id-Gost28147-89-CryptoPro-B-ParamSet,
1589	        id-Gost28147-89-CryptoPro-C-ParamSet,
1590	        id-Gost28147-89-CryptoPro-D-ParamSet,
1591	        id-Gost28147-89-CryptoPro-Simple-A-ParamSet,
1592	        id-Gost28147-89-CryptoPro-Simple-B-ParamSet,
1593	        id-Gost28147-89-CryptoPro-Simple-C-ParamSet,
1594	        id-Gost28147-89-CryptoPro-Simple-D-ParamSet
1595	        FROM Gost28147-89-EncryptionSyntax
1596	             gost28147-89-EncryptionSyntax
1597	        id-GostR3411-94-TestParamSet,
1598	        id-GostR3411-94-CryptoProParamSet
1599	        FROM GostR3411-94-DigestSyntax gostR3411-94-DigestSyntax
1600	        AlgorithmIdentifier, ALGORITHM-IDENTIFIER
1601	        FROM Cryptographic-Gost-Useful-Definitions
1602	             cryptographic-Gost-Useful-Definitions
1603	    ;
1604	  -- GOST R 34.10-2001 OIDs
1605	    id-GostR3410-2001 OBJECT IDENTIFIER ::=
1606	        { id-CryptoPro-algorithms gostR3410-2001(19) }
1607	    id-GostR3411-94-with-GostR3410-2001 OBJECT IDENTIFIER ::=
1608	        { id-CryptoPro-algorithms
1609	          gostR3411-94-with-gostR3410-2001(3) }
1610	  -- GOST R 34.10-2001 Public Key Cryptographic Parameters Set OIDs
1611	    id-GostR3410-2001-TestParamSet OBJECT IDENTIFIER ::=
1612	        { id-CryptoPro-ecc-signs test(0) }
1613	    id-GostR3410-2001-CryptoPro-A-ParamSet OBJECT IDENTIFIER ::=
1614	        { id-CryptoPro-ecc-signs cryptopro-A(1) }
1615	    id-GostR3410-2001-CryptoPro-B-ParamSet OBJECT IDENTIFIER ::=
1616	        { id-CryptoPro-ecc-signs cryptopro-B(2) }
1617	    id-GostR3410-2001-CryptoPro-C-ParamSet OBJECT IDENTIFIER ::=
1618	        { id-CryptoPro-ecc-signs cryptopro-C(3) }
1619	    id-GostR3410-2001-CryptoPro-XchA-ParamSet
1620	        OBJECT IDENTIFIER ::=
1621	          { id-CryptoPro-ecc-exchanges cryptopro-XchA(0) }
1622	    id-GostR3410-2001-CryptoPro-XchB-ParamSet
1623	        OBJECT IDENTIFIER ::=
1624	          { id-CryptoPro-ecc-exchanges cryptopro-XchB(1) }
1625	  -- GOST R 34.10-2001 Data Types
1626	    GostR3410-2001-CertificateSignature ::=
1627	        BIT STRING ( SIZE(256..512) )
1628	    GostR3410-2001-PublicKeyOctetString ::=
1629	        OCTET STRING ( SIZE(64) )
1630	    GostR3410-2001-PublicKey ::=
1631	        BIT STRING ( SIZE(16..524) )
1632	               -- Container for GostR3410-2001-PublicKeyOctetString
1633	    GostR3410-2001-PublicKeyParameters ::=
1634	            SEQUENCE {
1635	            publicKeyParamSet

1637	          OBJECT IDENTIFIER (
1638	              id-GostR3410-2001-TestParamSet |    -- Only for tests use
1639	              id-GostR3410-2001-CryptoPro-A-ParamSet |
1640	              id-GostR3410-2001-CryptoPro-B-ParamSet |
1641	              id-GostR3410-2001-CryptoPro-C-ParamSet |
1642	              id-GostR3410-2001-CryptoPro-XchA-ParamSet |
1643	              id-GostR3410-2001-CryptoPro-XchB-ParamSet
1644	          ),
1645	            digestParamSet
1646	          OBJECT IDENTIFIER (
1647	              id-GostR3411-94-TestParamSet | -- Only for tests use
1648	              id-GostR3411-94-CryptoProParamSet
1649	          ),
1650	            encryptionParamSet
1651	          OBJECT IDENTIFIER (
1652	              id-Gost28147-89-TestParamSet | -- Only for tests use
1653	              id-Gost28147-89-CryptoPro-A-ParamSet |
1654	              id-Gost28147-89-CryptoPro-B-ParamSet |
1655	              id-Gost28147-89-CryptoPro-C-ParamSet |
1656	              id-Gost28147-89-CryptoPro-D-ParamSet |
1657	              id-Gost28147-89-CryptoPro-Simple-A-ParamSet |
1658	              id-Gost28147-89-CryptoPro-Simple-B-ParamSet |
1659	              id-Gost28147-89-CryptoPro-Simple-C-ParamSet |
1660	              id-Gost28147-89-CryptoPro-Simple-D-ParamSet
1661	          ) OPTIONAL
1662	        }
1663	    GostR3410-2001-PublicKeyAlgorithms  ALGORITHM-IDENTIFIER ::= {
1664	        { GostR3410-2001-PublicKeyParameters IDENTIFIED BY
1665	               id-GostR3410-2001 }
1666	    }
1667	    GostR3410-2001-CertificateSignatureAlgorithms
1668	        ALGORITHM-IDENTIFIER ::= {
1669	          { NULL IDENTIFIED BY
1670	               id-GostR3411-94-with-GostR3410-2001 } |
1671	          { GostR3410-2001-PublicKeyParameters IDENTIFIED BY
1672	               id-GostR3411-94-with-GostR3410-2001 }
1673	      }
1674	END -- GostR3410-2001-PKISyntax

1676	5.7  GostR3410-2001-ParamSetSyntax

1678	-- Copyright(C) CRYPTO-PRO Company
1679	GostR3410-2001-ParamSetSyntax
1680	    { iso(1) member-body(2) ru(643) rans(2) cryptopro(2)
1681	      other(1) modules(1) gostR3410-2001-ParamSetSyntax(12) 1 }
1682	DEFINITIONS ::=
1683	BEGIN
1684	-- EXPORTS All --
1685	-- The types and values defined in this module are exported for
1686	-- use in the other ASN.1 modules contained within the Russian
1687	-- Cryptography "GOST" & "GOST R" Specifications, and for the use
1688	-- of other applications which will use them to access Russian
1689	-- Cryptography services. Other applications may use them for
1690	-- their own purposes, but this will not constrain extensions and
1691	-- modifications needed to maintain or improve the Russian
1692	-- Cryptography service.
1693	    IMPORTS
1694	        id-CryptoPro-algorithms,
1695	        id-CryptoPro-ecc-signs, id-CryptoPro-ecc-exchanges,
1696	        gostR3410-2001-PKISyntax,
1697	        cryptographic-Gost-Useful-Definitions
1698	        FROM Cryptographic-Gost-Useful-Definitions
1699	            { iso(1) member-body(2) ru(643) rans(2)
1700	              cryptopro(2) other(1) modules(1)
1701	              cryptographic-Gost-Useful-Definitions(0) 1 }
1702	        id-GostR3410-2001,
1703	        id-GostR3410-2001-TestParamSet,
1704	        id-GostR3410-2001-CryptoPro-A-ParamSet,
1705	        id-GostR3410-2001-CryptoPro-B-ParamSet,
1706	        id-GostR3410-2001-CryptoPro-C-ParamSet,
1707	        id-GostR3410-2001-CryptoPro-XchA-ParamSet,
1708	        id-GostR3410-2001-CryptoPro-XchB-ParamSet
1709	        FROM GostR3410-2001-PKISyntax gostR3410-2001-PKISyntax
1710	        AlgorithmIdentifier, ALGORITHM-IDENTIFIER
1711	        FROM Cryptographic-Gost-Useful-Definitions
1712	             cryptographic-Gost-Useful-Definitions
1713	    ;
1714	    GostR3410-2001-ParamSetParameters ::=
1715	        SEQUENCE {
1716	            a       INTEGER (
1717	               1
1718	                  ..
1719	               115792089237316195423570985008687907853269984665640564039
1720	457584007913129639935
1721	               ),   -- 0 < a < p < 2^256
1722	            b       INTEGER (
1723	               1
1724	                  ..
1725	               115792089237316195423570985008687907853269984665640564039
1726	457584007913129639935
1727	               ),   -- 0 < b < p < 2^256
1728	            p       INTEGER (
1729	               289480223093290488558927462521719769633174961664101410098
1730	64396001978282409985
1731	               ..
1732	               115792089237316195423570985008687907853269984665640564039

1734	457584007913129639935
1735	               ),   -- 2^254 < p < 2^256
1736	            q       INTEGER (
1737	               289480223093290488558927462521719769633174961664101410098
1738	64396001978282409985
1739	               ..
1740	               115792089237316195423570985008687907853269984665640564039
1741	457584007913129639935
1742	               ),   -- 2^254 < q < 2^256
1743	            x       INTEGER (0
1744	                  ..
1745	               115792089237316195423570985008687907853269984665640564039
1746	457584007913129639935
1747	               ),   -- 0 < x < p < 2^256
1748	            y       INTEGER (0
1749	                  ..
1750	               115792089237316195423570985008687907853269984665640564039
1751	457584007913129639935
1752	               )    -- 0 < y < p < 2^256
1753	        }
1754	  -- GOST R 34.10-2001 Public Key Cryptographic Parameters Set:
1755	  -- algorithm & parameters
1756	  -- OID for Parameters Set imported from GostR3410-2001-PKISyntax
1757	    GostR3410-2001-ParamSetAlgorithm ALGORITHM-IDENTIFIER ::= {
1758	        { GostR3410-2001-ParamSetParameters IDENTIFIED BY
1759	               id-GostR3410-2001-TestParamSet } |
1760	        { GostR3410-2001-ParamSetParameters IDENTIFIED BY
1761	               id-GostR3410-2001-CryptoPro-A-ParamSet  } |
1762	        { GostR3410-2001-ParamSetParameters IDENTIFIED BY
1763	               id-GostR3410-2001-CryptoPro-B-ParamSet  } |
1764	        { GostR3410-2001-ParamSetParameters IDENTIFIED BY
1765	               id-GostR3410-2001-CryptoPro-C-ParamSet  } |
1766	        { GostR3410-2001-ParamSetParameters IDENTIFIED BY
1767	               id-GostR3410-2001-CryptoPro-XchA-ParamSet  } |
1768	        { GostR3410-2001-ParamSetParameters IDENTIFIED BY
1769	               id-GostR3410-2001-CryptoPro-XchB-ParamSet  }
1770	    }
1771	    gostR3410-2001-TestParamSet
1772	        AlgorithmIdentifier {{
1773	            GostR3410-2001-ParamSetAlgorithm
1774	        }} ::=
1775	        {
1776	            algorithm
1777	          id-GostR3410-2001-TestParamSet,
1778	            parameters
1779	          GostR3410-2001-ParamSetParameters:{
1780	              a   7,
1781	              b   43308876546767276905765904595650931995942111794451

1783	039583252968842033849580414,
1784	                        -- 5FBFF498AA938CE739B8E022FBAFEF40563F6E6A
1785	3472FC2A514C0CE9DAE23B7E
1786	              p   57896044618658097711785492504343953926634992332820
1787	282019728792003956564821041,
1788	                  -- 80000000000000000000000000000000000000000000000
1789	00000000000000431
1790	              q   57896044618658097711785492504343953927082934583725
1791	450622380973592137631069619,
1792	                        -- 8000000000000000000000000000000150FE8A18
1793	92976154C59CFC193ACCF5B3
1794	              x   2,
1795	              y   40189740565903750333544942293705977563573938990554
1796	5080690979365213431566280
1797	                  -- 8E2A8A0E65147D4BD6316030E16D19C85C97F0A9CA26712
1798	2B96ABBCEA7E8FC8
1799	          }
1800	        }
1801	    gostR3410-2001-CryptoPro-A-ParamSet
1802	        AlgorithmIdentifier {{
1803	            GostR3410-2001-ParamSetAlgorithm
1804	        }} ::=
1805	        {
1806	            algorithm
1807	          id-GostR3410-2001-CryptoPro-A-ParamSet,
1808	            parameters
1809	          GostR3410-2001-ParamSetParameters:{
1810	              a   11579208923731619542357098500868790785326998466564
1811	0564039457584007913129639316,
1812	               -- -3 == p - 3
1813	              b   166,
1814	                        -- a6
1815	              p   11579208923731619542357098500868790785326998466564
1816	0564039457584007913129639319,
1817	                  -- fffffffffffffffffffffffffffffffffffffffffffffff
1818	ffffffffffffffd97
1819	              q   11579208923731619542357098500868790785307376290849
1820	9243225378155805079068850323,
1821	                        -- ffffffffffffffffffffffffffffffff6c611070
1822	995ad10045841b09b761b893
1823	              x   1,
1824	              y   64033881142927202683649881450433473985931760268884
1825	941288852745803908878638612
1826	                  -- 8d91e471e0989cda27df505a453f2b7635294f2ddf23e3b
1827	122acc99c9e9f1e14
1828	          }
1829	        }
1830	    gostR3410-2001-CryptoPro-B-ParamSet
1831	        AlgorithmIdentifier {{
1832	            GostR3410-2001-ParamSetAlgorithm
1833	        }} ::=
1834	        {
1835	            algorithm
1836	          id-GostR3410-2001-CryptoPro-B-ParamSet,
1837	            parameters
1838	          GostR3410-2001-ParamSetParameters:{
1839	              a   57896044618658097711785492504343953926634992332820
1840	282019728792003956564823190,
1841	               -- -3 == p - 3
1842	              b   28091019353058090096996979000309560759124368558014
1843	865957655842872397301267595,
1844	                  -- 3e1af419a269a5f866a7d3c25c3df80ae979259373ff2b1
1845	82f49d4ce7e1bbc8b
1846	              p   57896044618658097711785492504343953926634992332820
1847	282019728792003956564823193,
1848	                  -- 80000000000000000000000000000000000000000000000
1849	00000000000000c99
1850	              q   57896044618658097711785492504343953927102133160255
1851	826820068844496087732066703,
1852	                        -- 800000000000000000000000000000015f700cff
1853	f1a624e5e497161bcc8a198f
1854	              x   1,
1855	              y   28792665814854611296992347458380284135028636778229
1856	113005756334730996303888124
1857	                  -- 3fa8124359f96680b83d1c3eb2c070e5c545c9858d03ecf
1858	b744bf8d717717efc
1859	          }
1860	        }
1861	    gostR3410-2001-CryptoPro-C-ParamSet
1862	        AlgorithmIdentifier {{
1863	            GostR3410-2001-ParamSetAlgorithm
1864	        }} ::=
1865	        {
1866	            algorithm
1867	          id-GostR3410-2001-CryptoPro-C-ParamSet,
1868	            parameters
1869	          GostR3410-2001-ParamSetParameters:{
1870	              a   70390085352083305199547718019018437841079516630045
1871	180471284346843705633502616,
1872	               -- -3 == p - 3
1873	              b   32858,
1874	                        -- 805a
1875	              p   70390085352083305199547718019018437841079516630045
1876	180471284346843705633502619,
1877	                  -- 9b9f605f5a858107ab1ec85e6b41c8aacf846e86789051d
1878	37998f7b9022d759b
1879	              q   70390085352083305199547718019018437840920882647164
1880	081035322601458352298396601,
1881	                        -- 9b9f605f5a858107ab1ec85e6b41c8aa582ca351
1882	1eddfb74f02f3a6598980bb9
1883	              x   0,
1884	              y   29818893917731240733471273240314769927240550812383
1885	695689146495261604565990247
1886	                  -- 41ece55743711a8c3cbf3783cd08c0ee4d4dc440d4641a8
1887	f366e550dfdb3bb67
1888	          }
1889	        }
1890	    gostR3410-2001-CryptoPro-ExA-ParamSet
1891	        AlgorithmIdentifier {{
1892	            GostR3410-2001-ParamSetAlgorithm
1893	        }} ::=
1894	        {
1895	            algorithm
1896	          id-GostR3410-2001-CryptoPro-XchA-ParamSet,
1897	            parameters
1898	          GostR3410-2001-ParamSetParameters:{
1899	              a   11579208923731619542357098500868790785326998466564
1900	0564039457584007913129639316,
1901	               -- -3 == p - 3
1902	              b   166,
1903	                        -- a6
1904	              p   11579208923731619542357098500868790785326998466564
1905	0564039457584007913129639319,
1906	                  -- fffffffffffffffffffffffffffffffffffffffffffffff
1907	ffffffffffffffd97
1908	              q   11579208923731619542357098500868790785307376290849
1909	9243225378155805079068850323,
1910	                        -- ffffffffffffffffffffffffffffffff6c611070
1911	995ad10045841b09b761b893
1912	              x   1,
1913	              y   64033881142927202683649881450433473985931760268884
1914	941288852745803908878638612
1915	                  -- 8d91e471e0989cda27df505a453f2b7635294f2ddf23e3b
1916	122acc99c9e9f1e14
1917	          }
1918	        }
1919	    gostR3410-2001-CryptoPro-ExB-ParamSet
1920	        AlgorithmIdentifier {{
1921	            GostR3410-2001-ParamSetAlgorithm
1922	        }} ::=
1923	        {
1924	            algorithm
1925	          id-GostR3410-2001-CryptoPro-XchB-ParamSet,
1926	            parameters

1928	          GostR3410-2001-ParamSetParameters:{
1929	              a   70390085352083305199547718019018437841079516630045
1930	180471284346843705633502616,
1931	               -- -3 == p - 3
1932	              b   32858,
1933	                  -- 805a
1934	              p   70390085352083305199547718019018437841079516630045
1935	180471284346843705633502619,
1936	                  -- 9b9f605f5a858107ab1ec85e6b41c8aacf846e86789051d
1937	37998f7b9022d759b
1938	              q   70390085352083305199547718019018437840920882647164
1939	081035322601458352298396601,
1940	                        -- 9b9f605f5a858107ab1ec85e6b41c8aa582ca351
1941	1eddfb74f02f3a6598980bb9
1942	              x   0,
1943	              y   29818893917731240733471273240314769927240550812383
1944	695689146495261604565990247
1945	                  -- 41ece55743711a8c3cbf3783cd08c0ee4d4dc440d4641a8
1946	f366e550dfdb3bb67
1947	          }
1948	        }
1949	END -- GostR3410-2001-ParamSetSyntax

1951	6  References

1953	   [GOST28147]     "Cryptographic Protection for Data Processing Sys-
1954	                   tem", GOST 28147-89, Gosudarstvennyi Standard of
1955	                   USSR, Government Committee of the USSR for Standards,
1956	                   1989. (In Russian);

1958	   [GOSTR341094]   "Information technology. Cryptographic Data Security.
1959	                   Produce and check procedures of Electronic Digital
1960	                   Signatures based on Asymmetric Cryptographic Algo-
1961	                   rithm.", GOST R 34.10-94, Gosudarstvennyi Standard of
1962	                   Russian Federation, Government Committee of the Rus-
1963	                   sia for Standards, 1994. (In Russian);

1965	   [GOSTR34102001] "Information technology. Cryptographic data security.
1966	                   Signature and verification processes of [electronic]
1967	                   digital signature.", GOST R 34.10-2001, Gosudarstven-
1968	                   nyi Standard of Russian Federation, Government Com-
1969	                   mittee of the Russia for Standards, 2001. (In Rus-
1970	                   sian);

1972	   [GOSTR341194]   "Information technology. Cryptographic Data Security.
1973	                   Hashing function.", GOST R 34.10-94, Gosudarstvennyi
1974	                   Standard of Russian Federation, Government Committee
1975	                   of the Russia for Standards, 1994. (In Russian);

1977	   [CPALGS]        Cryptographic Algorithm "CryptoPro CSP"

1979	   [Schneier95]    B.  Schneier, Applied cryptography, second edition,
1980	                   John Wiley & Sons, Inc., 1995;

1982	   [RFC 3280]      Housley, R., Polk, W., Ford, W.  and D.  Solo,
1983	                   "Internet X.509 Public Key Infrastructure Certificate
1984	                   and Certificate Revocation List (CRL) Profile", RFC
1985	                   3280, April 2002.

1987	   [RFC 3279]      Algorithms and Identifiers for the Internet X.509
1988	                   Public Key Infrastructure Certificate and Certificate
1989	                   Revocation List (CRL) Profile.  L.  Bassham, W.
1990	                   Polk, R.  Housley.  April 2002.

1992	   [RFC 2219]      Bradner, S., "Key Words for Use in RFCs to Indi-
1993	                   cateRequirement Levels", BCP 14, RFC 2119, March
1994	                   1997.

1996	   [TLS]           The TLS Protocol Version 1.0.  T.  Dierks, C.  Allen.
1997	                   January 1999, RFC 2246.

1999	   [X.660]         ITU-T Recommendation X.660 Information Technology -
2000	                   ASN.1 encoding rules: Specification of Basic Encoding
2001	                   Rules (BER), Canonical Encoding Rules (CER) and Dis-
2002	                   tinguished Encoding Rules (DER), 1997.

2004	Acknowledgments

2006	   This document was created in accordance with "Russian Cryptographic
2007	   Software Compatibility Agreement", signed by FGUE STC "Atlas",
2008	   CRYPTO-PRO, Factor-TC, MD PREI, Infotecs GmbH, SPRCIS (SPbRCZI),
2009	   Cryptocom, R-Alpha.  The goal of this agreement is to achieve mutual
2010	   compatibility of the products and solutions.

2012	   The authors wish to thank:

2014	   Microsoft Corporation Russia for provided information about company
2015	   products and solutions, and also for technical consulting in PKI.

2017	   RSA Security Russia and Demos Co Ltd for active colaboration and
2018	   critical help in creation of this document.

2020	   RSA Security Inc for compatibility testing of the proposed data
2021	   formats while incorporating them into RSA Keon product.

2023	   Baltimore Technology plc for compatibility testing of the proposed
2024	   data formats while incorporating them into UniCERT product.

2026	   Russ Hously (Vigil Security, LLC, housley@vigilsec.com) and Vasilij
2027	   Sakharov (DEMOS Co Ltd, svp@dol.ru) for initiative creating this
2028	   document.

2030	   This document is based on a contribution of CRYPTO-PRO company.  Any
2031	   substantial use of the text from this document must acknowledge
2032	   CRYPTO-PRO.  CRYPTO-PRO requests that all material mentioning or
2033	   referencing this document identify this as "CRYPTO-PRO CPPK".

2035	   Author's Addresses

2037	   Serguei Leontiev
2038	   CRYPTO-PRO
2039	   38, Obraztsova,
2040	   Moscow, 127018, Russian Federation
2041	   EMail: lse@CryptoPro.ru

2043	   Dennis Shefanovski
2044	   DEMOS Co Ltd
2045	   6/1, Ovchinnikovskaja naberezhnaya,
2046	   Moscow, 113035, Russian Federation
2047	   EMail: sdb@dol.ru

2049	   Alexandr Afanasiev
2050	   Factor-TC
2051	   office 711, 14, Presnenskij val,
2052	   Moscow, 123557, Russian Federation
2053	   EMail: aaaf@factor-ts.ru

2055	   Nikolaj Nikishin
2056	   Infotecs GmbH
2057	   p/b 35, 80-5, Leningradskij prospekt,
2058	   Moscow, 125315, Russian Federation
2059	   EMail: nikishin@infotecs.ru
2060	   Boleslav Izotov
2061	   FGUE STC "Atlas"
2062	   38, Obraztsova,
2063	   Moscow, 127018, Russian Federation
2064	   EMail: izotov@stcnet.ru

2066	   Elena Minaeva
2067	   MD PREI
2068	   build 3, 6A, Vtoroj Troitskij per.,
2069	   Moscow, Russian Federation
2070	   EMail: evminaeva@mo.msk.ru

2072	   Serguei Murugov
2073	   R-Alpha
2074	   4/1, Raspletina,
2075	   Moscow, 123060, Russian Federation
2076	   EMail: msm@office.ru

2078	   Igori Ustinov
2079	   Cryptocom
2080	   office 239, 51, Leninskij prospekt,
2081	   Moscow, 119991, Russian Federation
2082	   EMail: igus@cryptocom.ru

2084	   Anatolij Erkin
2085	   SPRCIS (SPbRCZI)
2086	   1, Obrucheva,
2087	   St.Petersburg, 195220, Russian Federation
2088	   EMail: erkin@nevsky.net

2090	Full Copyright Statement

2092	   Copyright (C) The Internet Society (2003).  All Rights Reserved.

2094	   This document and translations of it may be copied and furnished to
2095	   others, and derivative works that comment on or otherwise explain it
2096	   or assist in its implementation may be prepared, copied, published
2097	   and distributed, in whole or in part, without restriction of any
2098	   kind, provided that the above copyright notice and this paragraph are
2099	   included on all such copies and derivative works.  However, this
2100	   document itself may not be modified in any way, such as by removing
2101	   the copyright notice or references to the Internet Society or other
2102	   Internet organizations, except as needed for the purpose of
2103	   developing Internet standards in which case the procedures for
2104	   copyrights defined in the Internet Standards process must be
2105	   followed, or as required to translate it into languages other than
2106	   English.

2108	   The limited permissions granted above are perpetual and will not be
2109	   revoked by the Internet Society or its successors or assigns.

2111	   This document and the information contained herein is provided on an
2112	   "AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING
2113	   TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING
2114	   BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION
2115	   HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF
2116	   MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.