RFC Errata
RFC 5035, "Enhanced Security Services (ESS) Update: Adding CertID Algorithm Agility", August 2007
Source of RFC: smime (sec)
Errata ID: 2366
Status: Held for Document Update
Type: Editorial
Publication Format(s) : TEXT
Reported By: Alfred Hoenes
Date Reported: 2007-09-09
Held for Document Update by: Tim Polk
Date Held: 2010-07-29
Section 6 says:
On top of page 7, Section 6 of RFC 5035 says: The fields of ESSCertID are defined as follows: certHash | is computed over the entire DER-encoded certificate (including the | signature). [...] This is the counterpart to the issue explained in errata 2634. In the original Cert ID (v1) described here, the signature algorithm is fixed and should be specified explicitely as SHA-1 in the description of the certHash field : certHash | is computed over the entire DER-encoded certificate (including the | signature), using the SHA-1 algorithm. ^^^^^^^^^^^^^^^^^^^^^^^^^^^
It should say:
See above.
Notes:
See above.