Skip to content
GitLab
Find file Normal viewHistoryPermalink
EtsiTs102941Its-sMessages.asn 4.62 KB
Newer Older
filatov's avatar
Security ASN.1 files: ready for asn1c
filatov committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 
EtsiTs102941Its-sMessages
  { itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) its-sMessages(1) version1(1)}

-- draft version r6 of 28.09.2017

DEFINITIONS AUTOMATIC TAGS ::=
BEGIN

IMPORTS

EtsiTs103097Certificate, EtsiTs103097Data-Signed, EtsiTs103097Data-Encrypted, EtsiTs103097Data-SignedExternalPayload, EtsiTs103097Data-SignedAndEncrypted
FROM EtsiTs103097Module
{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(103097) securedMessageV1(0)}

AuthorizationResponseCode, AuthorizationValidationResponseCode, CertificateFormat, CertificateSubjectAttributes,EnrolmentResponseCode, EcSignature, HashedId8, PublicKeys, Version
FROM EtsiTs102941BaseTypes
{ itu-t(0) identified-organization(4) etsi(0) itsDomain(5) wg5(5) ts(102941) baseTypes(0) version1(1) }

;

/************
-- Messages
************/

EnrolmentRequestMessage::= EtsiTs103097Data-SignedAndEncrypted {EtsiTS102941DataIts-s (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentRequest PRESENT})})} 
EnrolmentResponseMessage::= EtsiTs103097Data-SignedAndEncrypted {EtsiTS102941DataIts-s (WITH COMPONENTS{..., content (WITH COMPONENTS{enrolmentResponse PRESENT})})} 
AuthorizationRequestMessage::= EtsiTs103097Data-Encrypted {EtsiTS102941DataIts-s (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequest PRESENT})})} 
AuthorizationRequestMessageWithPop::= EtsiTs103097Data-Encrypted {EtsiTS102941DataIts-s (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationRequestWithPop PRESENT})})} 
AuthorizationResponseMessage::= EtsiTs103097Data-SignedAndEncrypted {EtsiTS102941DataIts-s (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationResponse PRESENT})})} 
AuthorizationValidationRequestMessage::= EtsiTs103097Data-SignedAndEncrypted {EtsiTS102941DataIts-s (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationValidationRequest PRESENT})})} 
AuthorizationValidationResponseMessage::= EtsiTs103097Data-SignedAndEncrypted {EtsiTS102941DataIts-s (WITH COMPONENTS{..., content (WITH COMPONENTS{authorizationValidationResponse PRESENT})})} 


/************
-- EtsiTS102941Data
************/

EtsiTS102941DataIts-s::= SEQUENCE{
  version Version (v1),
  content Content}

Content ::= CHOICE{
	enrolmentRequest					InnerEcRequestSignedForPop,
	enrolmentResponse 					InnerEcResponse,
	authorizationRequest	 			InnerAtRequest,
	authorizationRequestWithPop			InnerAtRequestSignedForPop,
	authorizationResponse				InnerAtResponse,
	authorizationValidationRequest 		AuthorizationValidationRequest,
	authorizationValidationResponse 	AuthorizationValidationResponse,
	caCertificateRequest				NULL,
	caCertificateResponse 				NULL,
	... 
	} 


/************
-- EnrolmentRequest/Response
************/

InnerEcRequestSignedForPop::= EtsiTs103097Data-Signed{InnerEcRequest}

InnerEcRequest::= SEQUENCE {
  itsId 							IA5String,
  certificateFormat					CertificateFormat,
  publicKeys 						PublicKeys,
  requestedSubjectAttributes 		CertificateSubjectAttributes (WITH COMPONENTS{certIssuePermissions ABSENT}),
  ...
 }

InnerEcResponse ::= SEQUENCE {
  requestHash 		OCTET STRING (SIZE(16)),
  responseCode 		EnrolmentResponseCode,
  certificate 		EtsiTs103097Certificate OPTIONAL,
  ... 
 }
  (WITH COMPONENTS { responseCode (ok), certificate PRESENT }
     | WITH COMPONENTS { responseCode (ALL EXCEPT ok), certificate ABSENT }
  )

/************
-- AuthorizationRequest/Response
************/

InnerAtRequestSignedForPop::= EtsiTs103097Data-Signed{InnerAtRequest}

InnerAtRequest ::= SEQUENCE {
  publicKeys 			PublicKeys,
  hmacKey 				OCTET STRING (SIZE(32)),
  sharedAtRequest 		SharedAtRequest, 
  ecSignature			EcSignature,
  ...
  } 

SharedAtRequest ::= SEQUENCE {
  eaId 								HashedId8,
  keyTag 							OCTET STRING (SIZE(16)),
  ertificateFormat					CertificateFormat,
  requestedSubjectAttributes 		CertificateSubjectAttributes (WITH COMPONENTS{certIssuePermissions ABSENT}),
  ...
  }

InnerAtResponse ::= SEQUENCE {
  requestHash 		OCTET STRING (SIZE(16)),
  responseCode 		AuthorizationResponseCode,
  certificate 		EtsiTs103097Certificate OPTIONAL,
  ... 
 }
  (WITH COMPONENTS { responseCode (ok), certificate PRESENT }
  | WITH COMPONENTS { responseCode (ALL EXCEPT ok), certificate ABSENT }
  )

/************
-- AuthorizationValidationRequest/Response
************/

AuthorizationValidationRequest ::= SEQUENCE {
  sharedAtRequest 	SharedAtRequest,
  ecSignature 		EcSignature,
  ...
  }

AuthorizationValidationResponse ::= SEQUENCE { 
  requestHash 						OCTET STRING (SIZE(16)),
  responseCode 						AuthorizationValidationResponseCode,
  confirmedSubjectAttributes 		CertificateSubjectAttributes (WITH COMPONENTS{certIssuePermissions ABSENT}) OPTIONAL,
  ...
  }

END