000026121 - Create a PKCS #7 signed data message with authenticated attributes

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000026121
Applies ToRSA BSAFE Cert-C
PKCS #7 states that when authenticated attributes are present, the "content type" and "message digest" attribute types defined in PKCS #9 must be specified.
The Cert-C API does not contain these OIDs by default (for example, no AT_CONTENT_TYPE or AT_MESSAGE_DIGEST). Cert-C automatically computes and inserts these values into the authenticated attributes ATTRIBUTES_OBJ when it is needed.
IssueCreate a PKCS #7 signed data message with authenticated attributes
Create an ATTRIBUTES_OBJ with "content type" and "message digest" attributes.
ResolutionMake sure that the SIGNER_INFO.signedAttributes field is not NULL when adding it to the signers LIST_OBJ in C_ReadSignedDataMsg. When C_ReadSignedDataMsg sees that the SIGNER_INFO.signedAttributes is not NULL for a particular signer, it will compute and insert the necessary attribute types/values.
Legacy Article IDa538

Attachments

    Outcomes