<?xml version="1.0" encoding="ISO-8859-1"?> <MOAConfiguration xmlns="http://reference.e-government.gv.at/namespace/moaconfig/20021122#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:moa-spss="http://reference.e-government.gv.at/namespace/moa/20020822#"> <CanonicalizationAlgorithm name="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/> <DigestMethodAlgorithm name="http://www.w3.org/2000/09/xmldsig#sha1"/> <GenericConfiguration name="IAIKIXSILinit.properties" value="aValidFileName"/> <GenericConfiguration name="autoAddCertificates" value="true"/> <GenericConfiguration name="useAuthorityInfoAccess" value="true"/> <GenericConfiguration name="maxRevocationAge" value="0"/> <GenericConfiguration name="DirectoryCertStoreParameters.RootDir" value="aValidPathName"/> <GenericConfiguration name="archiveRevocationInfo" value="false"/> <GenericConfiguration name="DataBaseArchiveParameter.JDBCUrl" value="jdbc:postgresql://10.16.46.108/moa?user=moa&password=moatest"/> <GenericConfiguration name="test.ReferenceBase" value="test"/> <!-- <HardwareCryptoModule name="validPathToPKCS11Lib" slotID="validSlotID" userPIN="validPIN"/> <HardwareKeyModule name="validPathToPKCS11Lib" slotID="validSlotID" userPIN="validPIN"/> <HardwareKeyModule id="HSM" name="cryptoki.dll" slotID="0" userPIN="0000"/>--> <SoftwareKeyModule id="SWKeyModule1" filename="keys/test-ee2003_normal(buergerkarte).p12" password="buergerkarte"/> <SoftwareKeyModule id="SWKeyModule2" filename="keys/normal-eeExpired.p12" password=""/> <SoftwareKeyModule id="SWKeyModule3" filename="keys/ecc(ego).p12" password="ego"/> <SoftwareKeyModule id="SWKeyModule4" filename="keys/DSA.512.p12" password="topSecret"/> <KeyGroup id="HSMRSAKEY"> <Key> <KeyModuleID>HSM</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>C=AT,OU=MOA,O=BRZ,CN=HSMRSAKEY</dsig:X509IssuerName> <dsig:X509SerialNumber>1</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="PKCS12RSAKey1"> <!--PKCS12RSAKey1 maps to test-ee2003_normal(buergerkarte).p12--> <Key> <KeyModuleID>SWKeyModule1</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="PKCS12RSAKeyExpired"> <!--PKCS12RSAKey1 maps to sicher-demo(buergerkarte).p12--> <Key> <KeyModuleID>SWKeyModule2</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>10</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="PKCS12ECDSAKey1"> <!--PKCS12ECDSAKey1 maps to ecc(ego).p12--> <Key> <KeyModuleID>SWKeyModule3</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK ECDSA Test,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>68172</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="DSAinPKCS12"> <!--DSAinPKCS12 maps to DSA.512.p12--> <Key> <KeyModuleID>SWKeyModule4</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK DSA Test CA,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>761791</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="allKeys"> <Key> <KeyModuleID>SWKeyModule1</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> <Key> <KeyModuleID>SWKeyModule2</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> <Key> <KeyModuleID>SWKeyModule3</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK ECDSA Test,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>68172</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> <Key> <KeyModuleID>SWKeyModule4</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK DSA Test CA,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>761791</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroupMapping> <KeyGroup id="PKCS12RSAKey1"/> <KeyGroup id="PKCS12RSAKeyExpired"/> <KeyGroup id="PKCS12ECDSAKey1"/> <KeyGroup id="DSAinPKCS12"/> <KeyGroup id="HSMRSAKEY"/> </KeyGroupMapping> <KeyGroupMapping> <X509IssuerSerial> <dsig:X509IssuerName>CN=TestUser,OU=MOA,O=BRZ,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>12345678</dsig:X509SerialNumber> </X509IssuerSerial> <KeyGroup id="allKeys"/> </KeyGroupMapping> <ChainingModes systemDefaultMode="pkix"> <TrustAnchor mode="chaining"> <dsig:X509IssuerName>CN=A-Trust-nQual-0,OU=A-Trust-nQual-0,O=A-Trust,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>536</dsig:X509SerialNumber> </TrustAnchor> </ChainingModes> <CRLArchive duration="365"/> <CRLDistributionPoint> <CAIssuerDN>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</CAIssuerDN> <DistributionPoint uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/> </CRLDistributionPoint> <CRLDistributionPoint> <CAIssuerDN>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</CAIssuerDN> <DistributionPoint reasonCodes="keyCompromise affiliationChanged" uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/> <DistributionPoint reasonCodes="certificateHold" uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/> </CRLDistributionPoint> <VerifyTransformsInfoProfile id="TransformsInfoProfile1MOAID" filename="profiles/TransformsInfoProfile1MOAID.xml"/> <VerifyTransformsInfoProfile id="TransformsInfoProfile2MOAID" filename="profiles/TransformsInfoProfile2MOAID.xml"/> <VerifyTransformsInfoProfile id="TransformsInfoProfile3MOAID" filename="profiles/TransformsInfoProfile3MOAID.xml"/> <TrustProfile id="TrustProfile1" uri="C:/Programme/ApacheGroup/abnahme/conf/moa/trustprofiles/TrustProfile1"/> <TrustProfile id="TrustProfile2" uri="C:/Programme/ApacheGroup/abnahme/conf/moa/trustprofiles/TrustProfile2"/> </MOAConfiguration>