Skip to main content

2.3. Update Section 5.1.1 - PKI Message Header

2.3. Update Section 5.1.1 - PKI Message Header

Section 5.1.1 of [RFC4210] describes the PKI message header. This document introduces the new version 3, indicating support of EnvelopedData as specified in Section 2.7 and hashAlg as specified in Section 2.10.

Replace the ASN.1 syntax of PKIHeader and the subsequent description of pvno with the following text:

PKIHeader ::= SEQUENCE {
   pvno                INTEGER     { cmp1999(1), cmp2000(2),
                                     cmp2021(3) },
   sender              GeneralName,
   recipient           GeneralName,
   messageTime     [0] GeneralizedTime         OPTIONAL,
   protectionAlg   [1] AlgorithmIdentifier{ALGORITHM, {...}}
                       OPTIONAL,
   senderKID       [2] KeyIdentifier           OPTIONAL,
   recipKID        [3] KeyIdentifier           OPTIONAL,
   transactionID   [4] OCTET STRING            OPTIONAL,
   senderNonce     [5] OCTET STRING            OPTIONAL,
   recipNonce      [6] OCTET STRING            OPTIONAL,
   freeText        [7] PKIFreeText             OPTIONAL,
   generalInfo     [8] SEQUENCE SIZE (1..MAX) OF
                       InfoTypeAndValue     OPTIONAL
}

PKIFreeText ::= SEQUENCE SIZE (1..MAX) OF UTF8String

The usage of the protocol version number (pvno) is described in Section 7.

Last updated on