<?xml version="1.0" encoding="ISO-8859-1"?> <MOAConfiguration xmlns="http://reference.e-government.gv.at/namespace/moaconfig/20021122#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:moa-spss="http://reference.e-government.gv.at/namespace/moa/20020822#"> <CanonicalizationAlgorithm name="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/> <DigestMethodAlgorithm name="http://www.w3.org/2000/09/xmldsig#sha1"/> <GenericConfiguration name="autoAddCertificates" value="true"/> <GenericConfiguration name="useAuthorityInfoAccess" value="true"/> <GenericConfiguration name="maxRevocationAge" value="0"/> <GenericConfiguration name="DirectoryCertStoreParameters.RootDir" value="aValidPathName"/> <GenericConfiguration name="checkRevocation" value="false"/> <GenericConfiguration name="archiveRevocationInfo" value="false"/> <!-- <GenericConfiguration name="DataBaseArchiveParameter.JDBCUrl" value="jdbc:postgresql://10.16.46.108/moa?user=moa&password=moatest"/> --> <GenericConfiguration name="test.SigningTime" value="2003-05-10T01:01:01+01:00"/> <!-- <HardwareCryptoModule name="validPathToPKCS11Lib" slotID="validSlotID" userPIN="validPIN"/> <HardwareKeyModule name="validPathToPKCS11Lib" slotID="validSlotID" userPIN="validPIN"/> --> <!-- <HardwareKeyModule id="MOAHSM" name="cryptoki.dll" slotID="0" userPIN="1111"/> --> <SoftwareKeyModule id="SWKeyModule1" filename="keys/test-ee2003_normal(buergerkarte).p12" password="buergerkarte"/> <SoftwareKeyModule id="SWKeyModule2" filename="keys/normal-eeExpired.p12" password=""/> <SoftwareKeyModule id="SWKeyModule3" filename="keys/ecc(ego).p12" password="ego"/> <SoftwareKeyModule id="SWKeyModule4" filename="keys/DSA.512.p12" password="topSecret"/> <SoftwareKeyModule id="SWKeyModule5" filename="keys/test-ee2003_normal_verw_oid.p12" password="buergerkarte"/> <!-- <KeyGroup id="MOAHSMRSAKEY"> <Key> <KeyModuleID>MOAHSM</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>C=AT,OU=MOA,O=BRZ,CN=MOAHSMRSAKEY</dsig:X509IssuerName> <dsig:X509SerialNumber>1</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> --> <KeyGroup id="PKCS12RSAKey1"> <!--PKCS12RSAKey1 maps to test-ee2003_normal(buergerkarte).p12--> <Key> <KeyModuleID>SWKeyModule1</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="PKCS12RSAKeyNotAllowed"> <!--PKCS12RSAKey1 maps to test-ee2003_normal(buergerkarte).p12--> <Key> <KeyModuleID>SWKeyModule1</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="PKCS12RSAKeyExpired"> <!--PKCS12RSAKey1 maps to sicher-demo(buergerkarte).p12--> <Key> <KeyModuleID>SWKeyModule2</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>10</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="PKCS12ECDSAKey1"> <!--PKCS12ECDSAKey1 maps to ecc(ego).p12--> <Key> <KeyModuleID>SWKeyModule3</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK ECDSA Test,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>68172</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="DSAinPKCS12"> <!--DSAinPKCS12 maps to DSA.512.p12--> <Key> <KeyModuleID>SWKeyModule4</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK DSA Test CA,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>761791</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="VKTRUE"> <Key> <KeyModuleID>SWKeyModule5</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1050061309775</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroup id="allKeys"> <Key> <KeyModuleID>SWKeyModule1</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> <Key> <KeyModuleID>SWKeyModule2</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> <Key> <KeyModuleID>SWKeyModule3</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK ECDSA Test,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>68172</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> <Key> <KeyModuleID>SWKeyModule4</KeyModuleID> <KeyCertIssuerSerial> <dsig:X509IssuerName>CN=IAIK DSA Test CA,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>761791</dsig:X509SerialNumber> </KeyCertIssuerSerial> </Key> </KeyGroup> <KeyGroupMapping> <KeyGroup id="PKCS12RSAKey1"/> <KeyGroup id="PKCS12RSAKeyExpired"/> <KeyGroup id="PKCS12ECDSAKey1"/> <KeyGroup id="DSAinPKCS12"/> <KeyGroup id="VKTRUE"/> </KeyGroupMapping> <KeyGroupMapping> <X509IssuerSerial> <dsig:X509IssuerName>CN=TestUser,OU=MOA,O=BRZ,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>12345678</dsig:X509SerialNumber> </X509IssuerSerial> <KeyGroup id="allKeys"/> </KeyGroupMapping> <KeyGroupMapping> <X509IssuerSerial> <dsig:X509IssuerName>CN=TestUser,OU=MOA,O=BRZ,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>12345678</dsig:X509SerialNumber> </X509IssuerSerial> <KeyGroup id="PKCS12RSAKeyNotAllowed"/> </KeyGroupMapping> <KeyGroupMapping> <X509IssuerSerial> <dsig:X509IssuerName>CN=moa-client, OU=MOA, O=BRZ, C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>1056980085</dsig:X509SerialNumber> </X509IssuerSerial> <KeyGroup id="PKCS12RSAKey1"/> </KeyGroupMapping> <ChainingModes systemDefaultMode="pkix"> <TrustAnchor mode="chaining"> <dsig:X509IssuerName>CN=A-Trust-nQual-0,OU=A-Trust-nQual-0,O=A-Trust,C=AT</dsig:X509IssuerName> <dsig:X509SerialNumber>536</dsig:X509SerialNumber> </TrustAnchor> </ChainingModes> <CRLArchive duration="365"/> <CRLDistributionPoint> <CAIssuerDN>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</CAIssuerDN> <DistributionPoint uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/> </CRLDistributionPoint> <CRLDistributionPoint> <CAIssuerDN>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</CAIssuerDN> <DistributionPoint reasonCodes="keyCompromise affiliationChanged" uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/> <DistributionPoint reasonCodes="certificateHold" uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/> </CRLDistributionPoint> <CreateTransformsInfoProfile id="CreateTransformsInfoProfile1" filename="profiles/CX1_bookprofile.xsl"/> <CreateSignatureEnvironmentProfile id="CreateSignatureEnvironmentProfile1" filename="profiles/CSEP.xml"/> <VerifyTransformsInfoProfile id="TransformsInfoProfile1" filename="profiles/TransformsInfoProfile1.xml"/> <VerifyTransformsInfoProfile id="TransformsInfoProfile2" filename="profiles/TransformsInfoProfile2.xml"/> <VerifyTransformsInfoProfile id="TransformsInfoProfile1MOAID" filename="profiles/TransformsInfoProfile1MOAID.xml"/> <SupplementProfile id="SupplementProfile1" filename="profiles/SupplementProfile1.xml"/> <SupplementProfile id="SupplementProfile2" filename="profiles/SupplementProfile2.xml"/> <TrustProfile id="TrustProfile1" uri="profiles/TrustProfile1"/> </MOAConfiguration>