On Thu, Aug 28, 2008 at 2:51 PM, Jean-Marc Desperrier <[EMAIL PROTECTED]> wrote: > > I think yes and I'm afraid the JSS version is a typo :-( > > The page below is clearly the real official reference to use and says : > > http://csrc.nist.gov/groups/ST/crypto_apps_infra/csor/algorithms.html > "The CSOR has allocated the following registration branch for > cryptographic algorithm objects: > > nistAlgorithms OBJECT IDENTIFIER ::= { csor nistAlgorithm(4) } > hashAlgs OBJECT IDENTIFIER ::= { nistAlgorithms 2 } > [...] > id-sha512 OBJECT IDENTIFIER ::= { hashAlgs 3 } > [...] > " > > http://mxr.mozilla.org/security/source/security/jss/org/mozilla/jss/asn1/OBJECT_IDENTIFIER.java#110 > 110 /** > 111 * The OID space for FIPS-180-2 SHA256/SHA384/SHA512 standardized > algorithms. > 112 */ > 113 public static final OBJECT_IDENTIFIER HASH_ALGORITHM = > 114 new OBJECT_IDENTIFIER( new long[] {2, 16, 840, 1, 101, 3, 4 } ); > > It should be this instead :-( > OBJECT_IDENTIFIER( new long[] {2, 16, 840, 1, 101, 3, 4, 2}};
Thank you for tracking this down. I filed a bug report: https://bugzilla.mozilla.org/show_bug.cgi?id=452692 Note that the OIDs for SHA-256 and SHA-384 are also wrong because of this bug. Wan-Teh _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
