MS PKI Certificates: where to find application policies and their related OIDs ?

TheMSsForum.com: The Microsoft Software Forum

Dear All,

could someone point me to an URL or give me more information on the following subject

"A mapping table between "MS certificate application policies" and IETF-like certificates profiles (including the various EKU OIDs, etc).

By application policies I mean the terms that a user could see when making a "view cert" in Internet explorer
Ensures the identity of a remote compute
Proves your identity to a remote compute
Ensures software came from software publishe
Protects software from alteration after publicatio
Protects e-mail message
Allows data to be signed with the current tim
Allows you to digitally sign a certificate trust lis
Allows secure communication on the Interne
Allows data on disk to be encrypte
Windows Hardware Driver Verificatio
Windows System Component Verificatio
OEM Windows System Component Verificatio
Embedded Windows System Component Verificatio
Key Pack License
License Server Verificatio
Smart Card Logo
Digital Right
Qualified Subordinatio
Key Recover
Document Signin
File Recover
Root List Signe
All application policie
Directory Service Email Replicatio
Certificate Request Agen
Key Recovery Agen
Private Key Archiva
Lifetime Signin

Thanks in advance for any help in that matter

regards,

Fre
Top

Re: MS PKI Certificates: where to find application policies and their related OIDs ? by David

David
Fri Apr 16 07:24:46 CDT 2004

I am not sure what you are looking for exactly, since no paradigm exists for
application policies in PKIX, their usage is propietary, but their
application usage is meant to mirror EKU. we also support
certificatePolicies which is different.

potentially some more information on their usage:

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/plan/ws03qswp.asp

http://www.microsoft.com/technet/prodtechnol/windowsserver2003/technologies/security/ws03crtm.mspx

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/topics/crypto/tshtcrl.asp


--


David B. Cross [MS]

--
This posting is provided "AS IS" with no warranties, and confers no rights.

http://support.microsoft.com

"Huygens Frédéric" <merovingien03@hotmail.com> wrote in message
news:FDA60E9D-7B22-49D1-886E-18D5F11DD1C4@microsoft.com...
> Dear All,
>
> could someone point me to an URL or give me more information on the
following subject:
>
> "A mapping table between "MS certificate application policies" and
IETF-like certificates profiles (including the various EKU OIDs, etc)."
>
> By application policies I mean the terms that a user could see when making
a "view cert" in Internet explorer.
> Ensures the identity of a remote computer
> Proves your identity to a remote computer
> Ensures software came from software publisher
> Protects software from alteration after publication
> Protects e-mail messages
> Allows data to be signed with the current time
> Allows you to digitally sign a certificate trust list
> Allows secure communication on the Internet
> Allows data on disk to be encrypted
> Windows Hardware Driver Verification
> Windows System Component Verification
> OEM Windows System Component Verification
> Embedded Windows System Component Verification
> Key Pack Licenses
> License Server Verification
> Smart Card Logon
> Digital Rights
> Qualified Subordination
> Key Recovery
> Document Signing
> File Recovery
> Root List Signer
> All application policies
> Directory Service Email Replication
> Certificate Request Agent
> Key Recovery Agent
> Private Key Archival
> Lifetime Signing
>
> Thanks in advance for any help in that matter.
>
> regards,
>
> Fred
>


Top