The International Organization
for Standardization
  
The United Nations Economic
Commission for Europe
 
 
  
Syntax 4 Part 11 > Segment description
  
  
  Service segment specifications 
USC
  
 
 
Pos 
 
Tag
Name
S
R
Repr
Notes
  
 
USC
CERTIFICATE
To convey the public key and the credentials of its owner.

Dependency Notes:
1. D5(110,100) If first, then all

Notes:
2. 0536, if a full certificate (including the USR segment) is not used, the only data elements of the certificate shall be a unique certificate reference made of: the certificate reference (0536), the S500 identifying the issuer certification authority or the S500 identifying the certificate owner, including its public key name. In the case of a non-EDIFACT certificate data element 0545 shall also be present.
3. S500/0538, identifies a public key: either of the owner of this certificate, or the public key related to the private key used by the certificate issuer (certification authority or CA) to sign this certificate.
4. 0507, the original character set encoding of the certificate when it was signed. If no value is specified, the character set encoding corresponds to that identified by the character set repertoire standard.
5. 0543, the original character set repertoire of the certificate when it was signed. If no value is specified, the default is defined in the interchange header.
6. S505, when this certificate is transferred, it will use the default service characters defined in ISO 9735-1, or those defined in the service string advice, if used. This data element may specify the service characters used when the certificate was signed. If this data element is not used then they are the default service characters.
7. S501, dates and times involved in the certification process. Four occurrences of this composite data element are possible: one for the certificate generation date and time, one for the certificate start of validity period, one for the certificate end of validity period, one for revocation date and time.
 
 
010
0536
CERTIFICATE REFERENCE
Identifies one certificate for a certification authority.
C
1
an..70
020
SECURITY IDENTIFICATION DETAILS
Identification of parties involved in the security process.

Dependency Notes:
1. D2(030,040,050) All or none
C
2
 
 
Security party qualifier
Identification of the role of the security party.
M
1
an..3
 
0538
Key name
Name used to establish a key relationship between the parties.
C
1
an..35
 
0511
Security party identification
Identification of a party involved in the security process, according to a defined registry of security parties.
C
1
an..1024
 
Security party code list qualifier
Identification of the type of identification used to register the security parties.
C
1
an..3
 
Security party code list responsible agency, coded
Identification of the agency in charge of registration of the security parties.
C
1
an..3
 
0586
Security party name
Name of the security party.
C
1
an..35
 
0586
Security party name
Name of the security party.
C
1
an..35
 
0586
Security party name
Name of the security party.
C
1
an..35
030
CERTIFICATE SYNTAX AND VERSION, CODED
Coded identification of the syntax and version used to create the certificate.
C
1
an..3
040
FILTER FUNCTION, CODED
Identification of the filtering function used to reversibly map any bit pattern on to a restricted character set.
C
1
an..3
050
ORIGINAL CHARACTER SET ENCODING, CODED
Identification of the character set in which the secured EDIFACT structure was encoded when security mechanisms were applied.
C
1
an..3
060
CERTIFICATE ORIGINAL CHARACTER SET REPERTOIRE, CODED
Identification of the character set repertoire used to create the certificate it was signed.
C
1
an..3
070
0546
USER AUTHORIZATION LEVEL
Specification of the authorization level associated with the owner of the certificate.
C
1
an..35
080
SERVICE CHARACTER FOR SIGNATURE
Identification of the characters used as syntactical service characters when a signature was computed.
C
5
 
 
Service character for signature qualifier
Identification of the type of service character used when the signature was computed.
M
1
an..3
 
0548
Service character for signature
Service character used when the signature was computed.

Notes:
1. In order to avoid translator problems, this service character is represented by its value in the character set identified by the original character set encoding data element (0507), hexa-filtered on, at least, two characters. For example the service character "'" is coded "27" (two characters), if ASCII 8bit code page is used.
M
1
an..4
090
SECURITY DATE AND TIME
Security related date and time.
C
4
 
 
Date and time qualifier
Specification of the type of date and time.
M
1
an..3
 
0338
Event date
Date of event.

Notes:
1. Format is YYMMDD or CCYYMMDD.
C
1
n..8
 
0314
Event time
Time of event.

Notes:
1. Format is HHMMSS ... with up to 9 more digits of precision. A 'Z' as the last character indicates UTC time. (ISO 8601)
C
1
an..15
 
0336
Time offset
UTC (Universal Coordinated Time) offset from event time.

Notes:
1. Format is HHMM. Shall be prefixed with '-' for negative offsets. (ISO 8601)
C
1
n4
100
SECURITY STATUS, CODED
Identification of the security element (key or certificate, for instance) status.
C
1
an..3
110
REVOCATION REASON, CODED
Identification of the reason why the certificate has been revoked.
C
1
an..3
 
 
Generated by GEFEG.FX
UN D.22B Syntax
  
  
  
  
2022-12-20