<?xml version="1.0" encoding="ISO-8859-1"?>
<MOAConfiguration xmlns="http://reference.e-government.gv.at/namespace/moaconfig/20021122#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:moa-spss="http://reference.e-government.gv.at/namespace/moa/20020822#">
	<CanonicalizationAlgorithm name="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
	<DigestMethodAlgorithm name="http://www.w3.org/2000/09/xmldsig#sha1"/>
	<GenericConfiguration name="autoAddCertificates" value="true"/>
	<GenericConfiguration name="useAuthorityInfoAccess" value="true"/>
	<GenericConfiguration name="maxRevocationAge" value="0"/>
	<GenericConfiguration name="DirectoryCertStoreParameters.RootDir" value="aValidPathName"/>
	<GenericConfiguration name="checkRevocation" value="false"/>
	<GenericConfiguration name="archiveRevocationInfo" value="false"/>
	<!-- <GenericConfiguration name="DataBaseArchiveParameter.JDBCUrl" value="jdbc:postgresql://10.16.46.108/moa?user=moa&amp;password=moatest"/> -->
	<GenericConfiguration name="test.SigningTime" value="2003-05-10T01:01:01+01:00"/>
	<!--
	<HardwareCryptoModule name="validPathToPKCS11Lib" slotID="validSlotID" userPIN="validPIN"/>
	<HardwareKeyModule name="validPathToPKCS11Lib" slotID="validSlotID" userPIN="validPIN"/>
	-->
	
	<!-- <HardwareKeyModule id="MOAHSM" name="cryptoki.dll" slotID="0" userPIN="1111"/> -->
	
	<SoftwareKeyModule id="SWKeyModule1" filename="keys/test-ee2003_normal(buergerkarte).p12" password="buergerkarte"/>
	<SoftwareKeyModule id="SWKeyModule2" filename="keys/normal-eeExpired.p12" password=""/>
	<SoftwareKeyModule id="SWKeyModule3" filename="keys/ecc(ego).p12" password="ego"/>
	<SoftwareKeyModule id="SWKeyModule4" filename="keys/DSA.512.p12" password="topSecret"/>
	<SoftwareKeyModule id="SWKeyModule5" filename="keys/test-ee2003_normal_verw_oid.p12" password="buergerkarte"/>
	<!-- <KeyGroup id="MOAHSMRSAKEY">
		<Key>
			<KeyModuleID>MOAHSM</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>C=AT,OU=MOA,O=BRZ,CN=MOAHSMRSAKEY</dsig:X509IssuerName>
				<dsig:X509SerialNumber>1</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup> -->
	<KeyGroup id="PKCS12RSAKey1">
		<!--PKCS12RSAKey1 maps to test-ee2003_normal(buergerkarte).p12-->
		<Key>
			<KeyModuleID>SWKeyModule1</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup>
	<KeyGroup id="PKCS12RSAKeyNotAllowed">
		<!--PKCS12RSAKey1 maps to test-ee2003_normal(buergerkarte).p12-->
		<Key>
			<KeyModuleID>SWKeyModule1</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup>
	<KeyGroup id="PKCS12RSAKeyExpired">
		<!--PKCS12RSAKey1 maps to sicher-demo(buergerkarte).p12-->
		<Key>
			<KeyModuleID>SWKeyModule2</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>10</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup>
	<KeyGroup id="PKCS12ECDSAKey1">
		<!--PKCS12ECDSAKey1 maps to ecc(ego).p12-->
		<Key>
			<KeyModuleID>SWKeyModule3</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK ECDSA Test,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>68172</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup>
	<KeyGroup id="DSAinPKCS12">
		<!--DSAinPKCS12 maps to DSA.512.p12-->
		<Key>
			<KeyModuleID>SWKeyModule4</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK DSA Test CA,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>761791</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup>
	<KeyGroup id="VKTRUE">
		<Key>
			<KeyModuleID>SWKeyModule5</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>1050061309775</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup>
	<KeyGroup id="allKeys">
		<Key>
			<KeyModuleID>SWKeyModule1</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
		<Key>
			<KeyModuleID>SWKeyModule2</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>1044289238331</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
		<Key>
			<KeyModuleID>SWKeyModule3</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK ECDSA Test,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>68172</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
		<Key>
			<KeyModuleID>SWKeyModule4</KeyModuleID>
			<KeyCertIssuerSerial>
				<dsig:X509IssuerName>CN=IAIK DSA Test CA,OU=JavaSecurity,O=IAIK,C=AT</dsig:X509IssuerName>
				<dsig:X509SerialNumber>761791</dsig:X509SerialNumber>
			</KeyCertIssuerSerial>
		</Key>
	</KeyGroup>
	<KeyGroupMapping>
		<KeyGroup id="PKCS12RSAKey1"/>
		<KeyGroup id="PKCS12RSAKeyExpired"/>
		<KeyGroup id="PKCS12ECDSAKey1"/>
		<KeyGroup id="DSAinPKCS12"/>
		<KeyGroup id="VKTRUE"/>
	</KeyGroupMapping>
	<KeyGroupMapping>
		<X509IssuerSerial>
			<dsig:X509IssuerName>CN=TestUser,OU=MOA,O=BRZ,C=AT</dsig:X509IssuerName>
			<dsig:X509SerialNumber>12345678</dsig:X509SerialNumber>
		</X509IssuerSerial>
		<KeyGroup id="allKeys"/>
	</KeyGroupMapping>
	<KeyGroupMapping>
		<X509IssuerSerial>
			<dsig:X509IssuerName>CN=TestUser,OU=MOA,O=BRZ,C=AT</dsig:X509IssuerName>
			<dsig:X509SerialNumber>12345678</dsig:X509SerialNumber>
		</X509IssuerSerial>
		<KeyGroup id="PKCS12RSAKeyNotAllowed"/>
	</KeyGroupMapping>
        <KeyGroupMapping>
                <X509IssuerSerial>
                        <dsig:X509IssuerName>CN=moa-client, OU=MOA, O=BRZ, C=AT</dsig:X509IssuerName>
                        <dsig:X509SerialNumber>1056980085</dsig:X509SerialNumber>
                </X509IssuerSerial>
                <KeyGroup id="PKCS12RSAKey1"/>
        </KeyGroupMapping>

	<ChainingModes systemDefaultMode="pkix">
		<TrustAnchor mode="chaining">
			<dsig:X509IssuerName>CN=A-Trust-nQual-0,OU=A-Trust-nQual-0,O=A-Trust,C=AT</dsig:X509IssuerName>
			<dsig:X509SerialNumber>536</dsig:X509SerialNumber>
		</TrustAnchor>
	</ChainingModes>
	<CRLArchive duration="365"/>
	<CRLDistributionPoint>
		<CAIssuerDN>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</CAIssuerDN>
		<DistributionPoint uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/>
	</CRLDistributionPoint>
	<CRLDistributionPoint>
		<CAIssuerDN>CN=IAIK Test CA,OU=IAIK Test CA,OU=Insitute for Applied Information Processing and Communications,O=GRAZ UNIVERSITY OF TECHNOLOGY,C=AT</CAIssuerDN>
		<DistributionPoint reasonCodes="keyCompromise affiliationChanged" uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/>
		<DistributionPoint reasonCodes="certificateHold" uri="http://www.iaik.at/testCA/iaik_test_sig.crl"/>
	</CRLDistributionPoint>
	<CreateTransformsInfoProfile id="CreateTransformsInfoProfile1" filename="profiles/CX1_bookprofile.xsl"/>
	<CreateSignatureEnvironmentProfile id="CreateSignatureEnvironmentProfile1" filename="profiles/CSEP.xml"/>
	<VerifyTransformsInfoProfile id="TransformsInfoProfile1" filename="profiles/TransformsInfoProfile1.xml"/>
	<VerifyTransformsInfoProfile id="TransformsInfoProfile2" filename="profiles/TransformsInfoProfile2.xml"/>
	<VerifyTransformsInfoProfile id="TransformsInfoProfile1MOAID" filename="profiles/TransformsInfoProfile1MOAID.xml"/>
	<SupplementProfile id="SupplementProfile1" filename="profiles/SupplementProfile1.xml"/>
	<SupplementProfile id="SupplementProfile2" filename="profiles/SupplementProfile2.xml"/>
	<TrustProfile id="TrustProfile1" uri="profiles/TrustProfile1"/>
</MOAConfiguration>