Hi,
Just now, I have joined in this SCEP group. I have couple
of doubts in implementing the SCEP specification. Right now, I am working with
the version 11.
- Other than PKIMessage case, at all places content
type has been considered as SIMPLE DATA. Instead of Enveloped or Signed. i.e.
{pkcs-7 1}
- In the content type authenticated attribute also, it
is SIMPLE DATA type, even thought the actual content is enveloped or signed.
- For extension request, pkcs-9-at-extensionRequest
OBJECT IDENTIFIER: = {pkcs-9 14}, is already exists. But different ID
given for the same id-extensionReq
- In Appendix F. CA Capabilities, If a CA is not
supporting any one of the capabilities. Then is the response should be
empty string i.e. “”.
Some Other
Observations:
- In the section, 5.4.1 GetCRL Message format, It has
been used as CertCRL instead of GetCRL
- In the section, 5.1.1 PKCSReq Message Format, It has
been used as pkcsCertRepSigned, instead of pkcsCertReqSigned.
Thanks in advance.
Thanks & Regards,
Duggirala Naga Vinod
|