From aad4b81cfe515cf61a216ba5e4133dd4f2da377c Mon Sep 17 00:00:00 2001 From: Thomas Fossati Date: Wed, 8 Jan 2025 12:54:40 +0100 Subject: [PATCH] =?UTF-8?q?slight=20reflow=20of=20=C2=A73.1?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Fossati --- draft-birkholz-cose-tsa-tst-header-parameter.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/draft-birkholz-cose-tsa-tst-header-parameter.md b/draft-birkholz-cose-tsa-tst-header-parameter.md index 4034c95..ed1f9c1 100644 --- a/draft-birkholz-cose-tsa-tst-header-parameter.md +++ b/draft-birkholz-cose-tsa-tst-header-parameter.md @@ -146,6 +146,8 @@ To minimize dependencies, the hash algorithm used for signing the COSE message S The `3161-ctt` COSE _unprotected_ header parameter MUST be used for the mode described in {{sec-cose-then-timestamp}}. +The `3161-ctt` unprotected header parameter contains a DER-encoded RFC3161 TimeStampToken wrapped in a CBOR byte string (Major type 2). + The message imprint sent in the request to the TSA MUST be either: * the hash of the signature field of the `COSE_Sign1` message. @@ -154,8 +156,6 @@ The message imprint sent in the request to the TSA MUST be either: In either case, to minimize dependencies, the hash algorithm SHOULD be the same as the algorithm used for signing the COSE message. This may not be possible if the timestamp token has been obtained outside the processing context in which the COSE object is assembled. -The `3161-ctt` unprotected header parameter contains a DER-encoded RFC3161 TimeStampToken wrapped in a CBOR byte string (Major type 2). - # Timestamp Processing RFC 3161 timestamp tokens use CMS as signature envelope format.