Presentation is loading. Please wait.

Presentation is loading. Please wait.

ASN.1: Introduction Zdeněk Říha.

Published byLucinda Rose Modified over 6 years ago

Similar presentations

Presentation on theme: "ASN.1: Introduction Zdeněk Říha."— Presentation transcript:

1 ASN.1: Introduction Zdeněk Říha

2 ASN.1 Abstract Syntax Notation 1
notation for describing abstract types and values Defined in ITU-T X.680 … X.695 Used in many file formats, including crypto Public keys, private keys Certificate requests, certificates Digital signatures, padding, encrypted files

3 ASN.1 Allows format/storage/transmission of data
Compatible among many applications Not dependent on HW platform E.g. little/big endian Not dependent on operating system Simple & Structured types Multiple encoding rules (methods)

4 ASN.1 – Types

5 ASN.1 – simple types Integer Bit string Octet string NULL
signed integer (there’s no unsigned integer) Bit string The number of bits does not have to be a multiple of 8 Octet string an arbitrary string of octets NULL No data (used in parameters) PringtableString, IA5String, UTF8String, … Strings – the sets of characters are various UTCTime Time

6 ASN.1 – OID type Object identifier (OID) Example
Sequence of integer components that identify an object Assigned in a hierarchical way Example sha-1WithRSAEncryption = iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-1(1) 5

7 ASN.1 – structured types SEQUENCE SEQUENCE OF SET SET OF
an ordered collection of one or more types SEQUENCE OF an ordered collection of zero or more occurrences of a given type SET an unordered collection of one or more types SET OF an unordered collection of zero or more occurrences of a given type

8 ASN.1 Encoding Rules XML – oriented formats Byte-oriented formats
XER (XML Encoding Rules) Byte-oriented formats BER (Basic Encoding Rules) CER (Canonical Encoding Rules) – subset of BER DER (Distinguished Encoding Rules) – subset of BER Used for crypto files Bit-oriented formats PER (Packed Encoding Rules) Verbose, human readable formats GSER (Generic String Encoding Rules)

9 BER encoding TLV – Tag Length Value Example
All the data is encoded using a simple TLV format Tag – what kind of data it is Length – the length of the data Value – the data itself Example [hexadecimal values] Tag – Integer Length of data – 1 byte Data: (positive integer) 5

10 Nested data SEQUENCE is similar to struct/record
FF FF 05 00 30 09 – sequence of length 9 bytes – integer 5 04 02 FF FF – octet string FF FF 05 00 – NULL (no data)

11 BER tags Tag encoding Class Tag number Bits 1-5
If all bits are 1 then the tag continues in the following byte(s) Tag # class Constructed?

12 BER length length >=0 && length <= 127
The length is coded directly E.g. ’05’ Otherwise the bit 8 is set, bits 1-7 code the number of bytes that specify the length E.g > ‘81’ ‘FF’ E.g > ’82’ ‘01’ ‘00’ or also ’83’ ‘00’ ‘01’ ‘00’ BER x DER ‘80’ is “indefinite” length Not allowed in DER

13 BER value The data itself Dependent on data type
Integer: signed – e.g > ’00 80’ Octet string: directly the data Bit string: number of unused bits + padded bit string to a multiple of 8 bits (padding is at the end) UTCTime: string of one of the forms

14 First look at the binary DER file
 CSCA_CZE.crt

15 DER vs. PEM PEM PEM as such not used, but formats still used
Privacy Enhanced Mail PEM as such not used, but formats still used Textual formats Practical for transport channels where full 8bit data can be damaged PEM is base64 coded DER enveloped with -----BEGIN SOMETHING----- -----END SOMETHING----- Where SOMETHING is CERTIFICATE/PKCS7/KEY…

16 Sample PEM file  CSCA_CZE.pem

17 ASN.1 viewers Unber (part of asn1c) Openssl asn1parse ASN.1 Editor

18 OpenSSL asn1parse  CSCA_CZE.crt

19 unber  CSCA_CZE.crt

20 Manual viewing/processing
f2 SEQUENCE length 1266B length 806B A0 03 CONTEXT SPECIFIC 0 Length 3B INTEGER: 2  CSCA_CZE.crt

21 ASN.1 Editor  CSCA_CZE.crt

22 ASN.1 Grammar To understand the structure (what is the meaning of particular fields) we need ASN.1 grammar

Download ppt "ASN.1: Introduction Zdeněk Říha."

Similar presentations

Summary Introduction The protocols developed by ITU-T E-Health protocol Architecture of e-Health X.th1 X.th2 to X.th6 Common Alerting Protocol Conclusion.

Summary Introduction The protocols developed by ITU-T E-Health protocol Architecture of e-Health X.th1 X.th2 to X.th6 Common Alerting Protocol Conclusion.
IPV6. Features of IPv6 New header format Large address space More efficient routing IPsec header support required Simple automatic configuration New protocol.

IPV6. Features of IPv6 New header format Large address space More efficient routing IPsec header support required Simple automatic configuration New protocol.
1 Pertemuan 05 Model Informasi - SMI Matakuliah: H0372/Manajemen Jaringan Tahun: 2005 Versi: 1/0.

1 Pertemuan 05 Model Informasi - SMI Matakuliah: H0372/Manajemen Jaringan Tahun: 2005 Versi: 1/0.
Some Thoughts on Data Representation 47th IETF AAAarch Research Group David Spence Merit Network, Inc.

Some Thoughts on Data Representation 47th IETF AAAarch Research Group David Spence Merit Network, Inc.
TCP/IP Protocol Suite 1 Chapter 21 Upon completion you will be able to: Network Management: SNMP Understand the SNMP manager and the SNMP agent Understand.

TCP/IP Protocol Suite 1 Chapter 21 Upon completion you will be able to: Network Management: SNMP Understand the SNMP manager and the SNMP agent Understand.
CSTA is a kind of standard communication protocol used between PBX and computer that is famous in Europe. What is CSTA ? Control Requests Event Notifications.

CSTA is a kind of standard communication protocol used between PBX and computer that is famous in Europe. What is CSTA ? Control Requests Event Notifications.
Jump to first page PKI2001 (TIFR, Mumbai) ASN.1 Abstract Syntax Notation One ASN.1 is a standard way to describe a message(a unit application data) that.

Jump to first page PKI2001 (TIFR, Mumbai) ASN.1 Abstract Syntax Notation One ASN.1 is a standard way to describe a message(a unit application data) that.
SNMP Management Information

SNMP Management Information
SNMP: Simple Network Management Protocol

SNMP: Simple Network Management Protocol
ECE 2110: Introduction to Digital Systems Signed Number Conversions.

ECE 2110: Introduction to Digital Systems Signed Number Conversions.
S/MIME and CMS Presentation for CSE712 By Yi Wen Instructor: Dr. Aidong Zhang.

S/MIME and CMS Presentation for CSE712 By Yi Wen Instructor: Dr. Aidong Zhang.
Abstract Syntax Notation One ASN.1

Abstract Syntax Notation One ASN.1
Presentation © Copyright 2002, Bryan Meyers Defining Data with Definition Specifications Chapter 3.

Presentation © Copyright 2002, Bryan Meyers Defining Data with Definition Specifications Chapter 3.
ASN.1 CNS 4650 Fall 2004 Rev. 2.

ASN.1 CNS 4650 Fall 2004 Rev. 2.
Abstract Syntax Notation Computer Networks courses Villanova University.

Abstract Syntax Notation Computer Networks courses Villanova University.
Network Management Computer Networks Natawut Nupairoj, Ph.D.

Network Management Computer Networks Natawut Nupairoj, Ph.D.
Presentation Services  need for a presentation services  ASN.1  declaring data type  encoding data types  implementation issues  reading: text, section.

Presentation Services  need for a presentation services  ASN.1  declaring data type  encoding data types  implementation issues  reading: text, section.
Abstract Syntax Notation ASN.1 Week-5 Ref: “SNMP…” by Stallings (Appendix B)

Abstract Syntax Notation ASN.1 Week-5 Ref: “SNMP…” by Stallings (Appendix B)
Anatomy of a Sound File v12.7.17 © Allan C. Milne Abertay University.

Anatomy of a Sound File v © Allan C. Milne Abertay University.
Study Group 7/17 ASN.1 ASN.1: Past uses, new developments, and future prospects in security and e-commerce applications John Larmouth

Study Group 7/17 ASN.1 ASN.1: Past uses, new developments, and future prospects in security and e-commerce applications John Larmouth

Similar presentations

Ads by Google