|
CERTIFICATE |
|
|
To convey the public key and the credentials of its owner.
Dependency Notes: 1. D5(110,100) If first, then all
Notes: (010,030) 0536, if a full certificate (including the USR segment) is not used, the only data elements of the certificate shall be a unique certificate reference made of: the certificate reference (0536), the S500 identifying the issuer certification authority or the S500 identifying the certificate owner, including its public key name. In the case of a non-EDIFACT certificate data element 0545 shall also be present. 020 S500/0538, identifies a public key: either of the owner of this certificate, or the public key related to the private key used by the certificate issuer (certification authority or CA) to sign this certificate. 050 0507, the original character set encoding of the certificate when it was signed. If no value is specified, the character set encoding corresponds to that identified by the character set repertoire standard. 060 0543, the original character set repertoire of the certificate when it was signed. If no value is specified, the default is defined in the interchange header. 080 S505, when this certificate is transferred, it will use the default service characters defined in part 1 of ISO 9735, or those defined in the service string advice, if used. This data element may specify the service characters used when the certificate was signed. If this data element is not used then they are the default service characters. 090 S501, dates and times involved in the certification process. Four occurrences of this composite data element are possible: one for the certificate generation date and time, one for the certificate start of validity period, one for the certificate end of validity period, one for revocation date and time. |
|
Pos |
|
Tag |
Name |
S |
R |
Repr |
|
Notes |
010 |
|
|
CERTIFICATE REFERENCE |
Identifies one certificate for a certification authority. |
|
C |
1 |
an..70 |
|
2 |
020 |
|
|
SECURITY IDENTIFICATION DETAILS |
Identification of parties involved in the security process. |
|
C |
2 |
|
|
3 |
|
|
|
Security party qualifier |
Identification of the role of the security party. |
|
M |
1 |
an..3 |
|
|
|
|
|
Key name |
Name used to establish a key relationship between the parties. |
|
C |
1 |
an..35 |
|
|
|
|
|
Security party identification |
Identification of a party involved in the security process, according to a defined registry of security parties. |
|
C |
1 |
an..1024 |
|
|
|
|
|
Security party code list qualifier |
Identification of the type of identification used to register the security parties. |
|
C |
1 |
an..3 |
|
|
|
|
|
Security party code list responsible agency, coded |
Identification of the agency in charge of registration of the security parties. |
|
C |
1 |
an..3 |
|
|
|
|
|
Security party name |
Name of the security party. |
|
C |
1 |
an..35 |
|
|
|
|
|
Security party name |
Name of the security party. |
|
C |
1 |
an..35 |
|
|
|
|
|
Security party name |
Name of the security party. |
|
C |
1 |
an..35 |
|
|
030 |
|
|
CERTIFICATE SYNTAX AND VERSION, CODED |
Coded identification of the syntax and version used to create the certificate. |
|
C |
1 |
an..3 |
|
2 |
040 |
|
|
FILTER FUNCTION, CODED |
Identification of the filtering function used to reversibly map any bit pattern on to a restricted character set. |
|
C |
1 |
an..3 |
|
|
050 |
|
|
ORIGINAL CHARACTER SET ENCODING, CODED |
Identification of the character set in which the secured EDIFACT structure was encoded when security mechanisms were applied. |
|
C |
1 |
an..3 |
|
4 |
060 |
|
|
CERTIFICATE ORIGINAL CHARACTER SET REPERTOIRE, CODED |
Identification of the character set repertoire used to create the certificate it was signed. |
|
C |
1 |
an..3 |
|
5 |
070 |
|
|
USER AUTHORISATION LEVEL |
Specification of the authorisation level associated with the owner of the certificate. |
|
C |
1 |
an..35 |
|
|
080 |
|
|
SERVICE CHARACTER FOR SIGNATURE |
Identification of the characters used as syntactical service characters when a signature was computed. |
|
C |
5 |
|
|
6 |
|
|
|
Service character for signature qualifier |
Identification of the type of service character used when the signature was computed. |
|
M |
1 |
an..3 |
|
|
|
|
|
Service character for signature |
Service character used when the signature was computed. |
|
M |
1 |
an..4 |
|
|
090 |
|
|
SECURITY DATE AND TIME |
Security related date and time. |
|
C |
4 |
|
|
7 |
|
|
|
Date and time qualifier |
Specification of the type of date and time. |
|
M |
1 |
an..3 |
|
|
|
|
|
Event date |
Date of event. |
|
C |
1 |
n..8 |
|
|
|
|
|
Event time |
Time of event. |
|
C |
1 |
an..15 |
|
|
|
|
|
Time offset |
UTC (Universal Co-ordinated Time) offset from event time. |
|
C |
1 |
n4 |
|
|
100 |
|
|
SECURITY STATUS, CODED |
Identification of the security element (key or certificate, for instance) status. |
|
C |
1 |
an..3 |
|
1 |
110 |
|
|
REVOCATION REASON, CODED |
Identification of the reason why the certificate has been revoked. |
|
C |
1 |
an..3 |
|
1 |