Re: [kitten] OID DER for OPENID20/SAML20
Alexey Melnikov <alexey.melnikov@isode.com> Wed, 04 April 2012 16:55 UTC
Return-Path: <alexey.melnikov@isode.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 50BC521F876F for <kitten@ietfa.amsl.com>; Wed, 4 Apr 2012 09:55:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.103
X-Spam-Level:
X-Spam-Status: No, score=-102.103 tagged_above=-999 required=5 tests=[AWL=0.496, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SGaiC38tvrHq for <kitten@ietfa.amsl.com>; Wed, 4 Apr 2012 09:55:21 -0700 (PDT)
Received: from rufus.isode.com (cl-125.lon-03.gb.sixxs.net [IPv6:2a00:14f0:e000:7c::2]) by ietfa.amsl.com (Postfix) with ESMTP id 77E7821F876C for <kitten@ietf.org>; Wed, 4 Apr 2012 09:55:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1333558520; d=isode.com; s=selector; i=@isode.com; bh=oVJWDscgXBkcCSZGIFqkNkygfWKezu4PEhdHrita9+U=; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version: In-Reply-To:References:Content-Type:Content-Transfer-Encoding: Content-ID:Content-Description; b=bbzZk/UAE4fjJh7uMmhCl5LUHlpZE6srAOM12pjFd04G58OpxyPZXLVAu4dLhCBaJcTJ3b zZs5t5aVpX4+Hi0VM6BSedbS+q6/lUw06v5I1O0CmjS4h1s7QoV5m6lGiuyOjh545A8jvp 2iWlG01JPaDUxJZ/X8N5xOCQxiHxlKk=;
Received: from [172.16.1.29] (shiny.isode.com [62.3.217.250]) by rufus.isode.com (submission channel) via TCP with ESMTPSA id <T3x8-AAk6R6S@rufus.isode.com>; Wed, 4 Apr 2012 17:55:20 +0100
X-SMTP-Protocol-Errors: PIPELINING
Message-ID: <4F7C7CF4.9070502@isode.com>
Date: Wed, 04 Apr 2012 17:55:16 +0100
From: Alexey Melnikov <alexey.melnikov@isode.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2
To: Simon Josefsson <simon@josefsson.org>
References: <87k41vlfg6.fsf@latte.josefsson.org>
In-Reply-To: <87k41vlfg6.fsf@latte.josefsson.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: kitten@ietf.org
Subject: Re: [kitten] OID DER for OPENID20/SAML20
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Apr 2012 16:55:22 -0000
On 04/04/2012 15:49, Simon Josefsson wrote:
> Maybe this ought to have been in the specs since most people appear to
> compute them by hand, but it isn't.
IMHO, this would be a fine addition to the specs.
> So the DER encoding of the OPENID20
> OID that I'm using is:
>
> gss_OID_desc GSS_OPENID20_static = {
> 6, (void *) "\x2b\x06\x01\x05\x05\x10"
> };
>
> and for SAML20 it is:
>
> gss_OID_desc GSS_SAML20_static = {
> 6, (void *) "\x2b\x06\x01\x05\x05\x11"
> };
>
> If I prepend \x06 (tag for OID) and \x06 (length 06) I can DER decode
> the OIDs using e.g. 'dumpasn1' and it looks right.
>
> However, it would be good if someone else confirmed this independently
> (or at least as independently as can be hoped for since I have now
> posted my guess).
- [kitten] OID DER for OPENID20/SAML20 Simon Josefsson
- Re: [kitten] OID DER for OPENID20/SAML20 Alexey Melnikov
- Re: [kitten] OID DER for OPENID20/SAML20 Simon Josefsson
- Re: [kitten] OID DER for OPENID20/SAML20 Jim Basney
- Re: [kitten] OID DER for OPENID20/SAML20 Simon Josefsson