|
OpenPACE
|
Context for the Terminal Authentication protocol. More...
#include <eac.h>
Data Fields | |
| unsigned char | version |
| (currently unused) Version of the TA protocol, MUST be 1 or 2 | |
| int | protocol |
| Identifier of the protocol's OID specifying the exact TA parameters to use. More... | |
| ENGINE * | key_engine |
| (currently unused) engine for signing and signature verification | |
| EVP_PKEY * | priv_key |
| TA private key used for signing the challenge. | |
| EVP_PKEY * | pub_key |
| TA public key used for signing the challenge. | |
| BUF_MEM * | pk_pcd |
| PCD's public key extracted from it's CV certificate. | |
| BUF_MEM * | nonce |
| PICC's challenge. | |
| CVC_CERT * | trust_anchor |
| Trust anchor for CV certificate validation. | |
| CVC_CERT * | current_cert |
| Most recent verified CV certificate in a certificate chain. | |
| CVC_CERT * | new_trust_anchor |
| When a complete CV certificate chain has been verified, this will be the new trust anchor. | |
| int | flags |
| Flags to control some of the behaviour of the CA. More... | |
| CVC_lookup_cvca_cert | lookup_cvca_cert |
| Lookup the CVCA trust anchor. More... | |
| int ta_ctx::flags |
| CVC_lookup_cvca_cert ta_ctx::lookup_cvca_cert |
Lookup the CVCA trust anchor.
This function is called when a CV certificate is imported although the terminal authentication was not initialized with a trust anchor.
| int ta_ctx::protocol |
Identifier of the protocol's OID specifying the exact TA parameters to use.
Accepts the following values:
NID_id_TA_RSA_v1_5_SHA_1 NID_id_TA_RSA_v1_5_SHA_256 NID_id_TA_RSA_PSS_SHA_1 NID_id_TA_RSA_PSS_SHA_256 NID_id_TA_RSA_v1_5_SHA_512 NID_id_TA_RSA_PSS_SHA_512 NID_id_TA_ECDSA_SHA_1 NID_id_TA_ECDSA_SHA_224 NID_id_TA_ECDSA_SHA_256 NID_id_TA_ECDSA_SHA_384 NID_id_TA_ECDSA_SHA_512
1.8.17