Difference between revisions of "Distinguished Encoding Rules"
From MgmtWiki
(→Context) |
(→References) |
||
| (4 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| − | == | + | ==Full Title== |
| − | [[Distinguished Encoding Rules]] (DER) we created to | + | [[Distinguished Encoding Rules]] (DER) we created to [[ASN.1]] as a syntax for the digital representation of real-word entities such as entries in a telephone directory. |
==Context== | ==Context== | ||
| − | The rules | + | The encoding rules are defined by the ITU standard S.690 which defines BER, CER and DER. Only DER has seen broad adoption in the [[Public Key Infrastructure]] used for TSL and other certificates. This is because BER and others give the developers options about encoding while DER does not. That makes it possible for a DER signed object to be deconstructed and reconstrued and will have the same hash and hence the same signature. |
See the wiki page on [[Distinguished Name]] (DN). | See the wiki page on [[Distinguished Name]] (DN). | ||
| − | |||
==Solution== | ==Solution== | ||
| − | This section describes a solution for Microsoft .NET 5.0 called pem-utils. | + | * This section describes a solution for Microsoft .NET 5.0 called pem-utils. |
| − | The code described was created by Wouter Huysentruit for .NET 4.7.1 (and NetStandard 2.0). | + | * The code described was created by Wouter Huysentruit for .NET 4.7.1 (and NetStandard 2.0). |
| − | The revised code for .NET 5.0 in in the github repository https://github.com/TomCJones/pem-utils. | + | * The revised code for .NET 5.0 in in the github repository https://github.com/TomCJones/pem-utils. |
==References== | ==References== | ||
| + | * The [https://docs.microsoft.com/en-us/windows/win32/seccertenroll/about-certificate-request-encoding best Microsoft reference to DER] is in the Certificate Enrollment API, not in Windows APIs. | ||
| + | * [https://lapo.it/asn1js/ JavaScript ASN.1 decoder] can be run online or offline. | ||
[[Category: Standard]] | [[Category: Standard]] | ||
[[Category: Identifier]] | [[Category: Identifier]] | ||
Latest revision as of 15:12, 29 June 2021
Contents
Full Title
Distinguished Encoding Rules (DER) we created to ASN.1 as a syntax for the digital representation of real-word entities such as entries in a telephone directory.
Context
The encoding rules are defined by the ITU standard S.690 which defines BER, CER and DER. Only DER has seen broad adoption in the Public Key Infrastructure used for TSL and other certificates. This is because BER and others give the developers options about encoding while DER does not. That makes it possible for a DER signed object to be deconstructed and reconstrued and will have the same hash and hence the same signature.
See the wiki page on Distinguished Name (DN).
Solution
- This section describes a solution for Microsoft .NET 5.0 called pem-utils.
- The code described was created by Wouter Huysentruit for .NET 4.7.1 (and NetStandard 2.0).
- The revised code for .NET 5.0 in in the github repository https://github.com/TomCJones/pem-utils.
References
- The best Microsoft reference to DER is in the Certificate Enrollment API, not in Windows APIs.
- JavaScript ASN.1 decoder can be run online or offline.
