-
Notifications
You must be signed in to change notification settings - Fork 34
/
Copy pathrats-tls.asn1
130 lines (114 loc) · 5.85 KB
/
rats-tls.asn1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
-- RATS-TLS ASN.1 syntax
RATS-TLS {
iso member-body(2) us(840) intel(113741)
} DEFINITIONS ::= BEGIN
RATS-TLS-Certificate-Extension-V1 ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension),
version RATS-TLS-Version (1),
evidence RATS-TLS-Certificate-Extension-Evidence,
endorsement RATS-TLS-Certificate-Extension-Endorsement OPTIONAL
}
RATS-TLS-OID ::= OBJECT IDENTIFIER (oid-RATS-TLS-Certificate-Extension |
oid-RATS-TLS-Certificate-Extension-Evidence |
oid-RATS-TLS-Certificate-Extension-Endorsement |
oid-RATS-TLS-Certificate-Extension-Evidence-SGX-EPID |
oid-RATS-TLS-Certificate-Extension-Evidence-SGX-ECDSA |
oid-RATS-TLS-Certificate-Extension-Evidence-TDX-ECDSA |
oid-RATS-TLS-Certificate-Extension-Evidence-TDX-LOCAL-REPORT |
oid-RATS-TLS-Certificate-Extension-Endorsement-SGX-ECDSA |
oid-RATS-TLS-Certificate-Extension-Endorsement-TDX-ECDSA)
-- RATS-TLS Certificate Extension OID: 1.2.840.113741.1337
oid-RATS-TLS-Certificate-Extension OBJECT IDENTIFIER ::= {
iso member-body(2) us(840) intel(113741) rats-tls-certificate-extension(1337)
}
-- RATS-TLS Certificate Extension Evidence OID: 1.2.840.113741.1337.1
oid-RATS-TLS-Certificate-Extension-Evidence OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension 1
}
-- RATS-TLS Certificate Extension Evidence OID: 1.2.840.113741.1337.2
oid-RATS-TLS-Certificate-Extension-Endorsement OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension 2
}
-- SGX EPID OID: 1.2.840.113741.1337.1.1
oid-RATS-TLS-Certificate-Extension-Evidence-SGX-EPID OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension-Evidence 1
}
-- SGX ECDSA OID: 1.2.840.113741.1337.1.2
oid-RATS-TLS-Certificate-Extension-Evidence-SGX-ECDSA OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension-Evidence 2
}
-- SGX LOCAL REPORT OID: 1.2.840.113741.1337.1.3
oid-RATS-TLS-Certificate-Extension-Evidence-SGX-LOCAL-REPORT OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension-Evidence 3
}
-- TDX ECDSA OID: 1.2.840.113741.1337.1.4
oid-RATS-TLS-Certificate-Extension-Evidence-TDX-ECDSA OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension-Evidence 4
}
-- TDX LOCAL REPORT OID: 1.2.840.113741.1337.1.5
oid-RATS-TLS-Certificate-Extension-Evidence-TDX-LOCAL-REPORT OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension-Evidence 5
}
-- SGX ECDSA Endorsement OID: 1.2.840.113741.1337.2.2
oid-RATS-TLS-Certificate-Extension-Endorsement-SGX-ECDSA OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension-Endorsement 2
}
-- TDX ECDSA Endorsement OID: 1.2.840.113741.1337.2.4
oid-RATS-TLS-Certificate-Extension-Endorsement-TDX-ECDSA OBJECT IDENTIFIER ::= {
oid-RATS-TLS-Certificate-Extension-Endorsement 4
}
RATS-TLS-Version ::= INTEGER (1..255)
RATS-TLS-Certificate-Extension-Evidence ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Evidence),
-- type RATS-TLS-Certificate-Extension-Evidence-Type,
content CHOICE {
sgxEpid [0] EXPLICIT RATS-TLS-Certificate-Extension-Evidence-SGX-EPID,
sgxEcdsa [1] EXPLICIT RATS-TLS-Certificate-Extension-Evidence-SGX-ECDSA,
sgxLocalReport [2] EXPLICIT RATS-TLS-Certificate-Extension-Evidence-SGX-LOCAL-REPORT,
tdxEcdsa [3] EXPLICIT RATS-TLS-Certificate-Extension-Evidence-TDX-ECDSA,
tdxLocalReport [4] EXPLICIT RATS-TLS-Certificate-Extension-Evidence-TDX-LOCAL-REPORT
}
}
RATS-TLS-Certificate-Extension-Evidence-Type ::= ENUMERATED {
sgxEpid, sgxEcdsa, sgxLocalReport, tdxEcdsa, tdxLocalReport
}
RATS-TLS-Certificate-Extension-Evidence-SGX-EPID ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Evidence-SGX-EPID),
content OCTET STRING
}
RATS-TLS-Certificate-Extension-Evidence-SGX-ECDSA ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Evidence-SGX-ECDSA),
content OCTET STRING
}
RATS-TLS-Certificate-Extension-Evidence-SGX-LOCAL-REPORT ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Evidence-SGX-LOCAL-REPORT),
content OCTET STRING
}
RATS-TLS-Certificate-Extension-Evidence-TDX-ECDSA ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Evidence-TDX-ECDSA),
content OCTET STRING
}
RATS-TLS-Certificate-Extension-Evidence-TDX-LOCAL-REPORT ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Evidence-TDX-LOCAL-REPORT),
content OCTET STRING
}
RATS-TLS-Certificate-Extension-Endorsement ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Endorsement),
-- type RATS-TLS-Certificate-Extension-Endorsement-Type,
content CHOICE {
sgxEcdsa [0] EXPLICIT RATS-TLS-Certificate-Extension-Endorsement-SGX-ECDSA,
tdxEcdsa [1] EXPLICIT RATS-TLS-Certificate-Extension-Endorsement-TDX-ECDSA
}
}
RATS-TLS-Certificate-Extension-Endorsement-Type ::= ENUMERATED {
sgxEcdsa, tdxEcdsa
}
RATS-TLS-Certificate-Extension-Endorsement-SGX-ECDSA ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Endorsement-SGX-ECDSA),
content OCTET STRING
}
RATS-TLS-Certificate-Extension-Endorsement-TDX-ECDSA ::= SEQUENCE {
id RATS-TLS-OID (oid-RATS-TLS-Certificate-Extension-Endorsement-TDX-ECDSA),
content OCTET STRING
}
END