Variable OIDsConst

Type Declaration

• ADOBE: { REVOCATION_INFO_ARCHIVAL: string }

  Adobe OIDs

  • REVOCATION_INFO_ARCHIVAL: string

    Revocation Info Archival

• AUTHORITY_INFO_ACCESS: { CA_ISSUERS: string; OCSP: string }

  AUTHORITY_INFO_ACCESS extension access methods

  • CA_ISSUERS: string

    CA Issuers

  • OCSP: string

    OCSP

• CURVES: {
      ED25519: string;
      ED448: string;
      SECP256K1: string;
      SECP256R1: string;
      SECP384R1: string;
      SECP521R1: string;
      X25519: string;
      X448: string;
  }

  Named Elliptic Curves

  • ED25519: string

    Ed25519 curve for EdDSA

  • ED448: string

    Ed448 curve for EdDSA

  • SECP256K1: string

    secp256k1 (used in Bitcoin and other cryptocurrencies)

  • SECP256R1: string

    NIST P-256 / secp256r1

  • SECP384R1: string

    NIST P-384 / secp384r1

  • SECP521R1: string

    NIST P-521 / secp521r1

  • X25519: string

    X25519 curve for ECDH

  • X448: string

    X448 curve for ECDH

• DN: {
      C: string;
      CN: string;
      EMAIL: string;
      L: string;
      O: string;
      OU: string;
      ST: string;
  }

  Distinguished Name (DN) components

  • C: string

    Country

  • CN: string

    Common Name

  • EMAIL: string

    Email Address (PKCS#9)

  • L: string

    Locality

  • O: string

    Organization

  • OU: string

    Organizational Unit

  • ST: string

    State or Province

• DSA: { ALGORITHM: string; SHA1_WITH_DSA: string; SHA256_WITH_DSA: string }

  DSA Algorithms

  • ALGORITHM: string

    Digital Signature Algorithm

  • SHA1_WITH_DSA: string

    SHA-1 with DSA Signature

  • SHA256_WITH_DSA: string

    SHA-256 with DSA Signature

• EC: {
      ECDH: string;
      PUBLIC_KEY: string;
      SHA1_WITH_ECDSA: string;
      SHA256_WITH_ECDSA: string;
      SHA384_WITH_ECDSA: string;
      SHA512_WITH_ECDSA: string;
  }

  Elliptic Curve Cryptography

  • ECDH: string

    Elliptic Curve Diffie-Hellman (ECDH)

  • PUBLIC_KEY: string

    Elliptic Curve Public Key

  • SHA1_WITH_ECDSA: string

    SHA-1 with ECDSA Signature

  • SHA256_WITH_ECDSA: string

    SHA-256 with ECDSA Signature

  • SHA384_WITH_ECDSA: string

    SHA-384 with ECDSA Signature

  • SHA512_WITH_ECDSA: string

    SHA-512 with ECDSA Signature

• EKU: {
      CLIENT_AUTH: string;
      CODE_SIGNING: string;
      DOCUMENT_SIGNING: string;
      EMAIL_PROTECTION: string;
      OCSP_SIGNING: string;
      SERVER_AUTH: string;
      TIME_STAMPING: string;
  }

  Extended Key Usage Purpose OIDs

  • CLIENT_AUTH: string

    TLS Web Client Authentication

  • CODE_SIGNING: string

    Code Signing

  • DOCUMENT_SIGNING: string

    Document Signing (Microsoft)

  • EMAIL_PROTECTION: string

    Email Protection

  • OCSP_SIGNING: string

    OCSP Signing

  • SERVER_AUTH: string

    TLS Web Server Authentication

  • TIME_STAMPING: string

    Time Stamping

• ENCRYPTION: {
      AES_128_CBC: string;
      AES_128_CCM: string;
      AES_128_ECB: string;
      AES_128_GCM: string;
      AES_192_CBC: string;
      AES_192_CCM: string;
      AES_192_ECB: string;
      AES_192_GCM: string;
      AES_256_CBC: string;
      AES_256_CCM: string;
      AES_256_ECB: string;
      AES_256_GCM: string;
      DES_EDE3_CBC: string;
  }

  Symmetric Encryption Algorithms

  • AES_128_CBC: string

    AES-128 in CBC mode

  • AES_128_CCM: string

    AES-128 in CCM mode

  • AES_128_ECB: string

    AES-128 in ECB mode

  • AES_128_GCM: string

    AES-128 in GCM mode

  • AES_192_CBC: string

    AES-192 in CBC mode

  • AES_192_CCM: string

    AES-192 in CCM mode

  • AES_192_ECB: string

    AES-192 in ECB mode

  • AES_192_GCM: string

    AES-192 in GCM mode

  • AES_256_CBC: string

    AES-256 in CBC mode

  • AES_256_CCM: string

    AES-256 in CCM mode

  • AES_256_ECB: string

    AES-256 in ECB mode

  • AES_256_GCM: string

    AES-256 in GCM mode

  • DES_EDE3_CBC: string

    Triple DES in CBC mode

• EXTENSION: {
      AUTHORITY_INFO_ACCESS: string;
      AUTHORITY_KEY_IDENTIFIER: string;
      BASIC_CONSTRAINTS: string;
      CERTIFICATE_POLICIES: string;
      CRL_DISTRIBUTION_POINTS: string;
      CRL_NUMBER: string;
      CRL_REASON_CODE: string;
      EXTENDED_KEY_USAGE: string;
      KEY_USAGE: string;
      SUBJECT_ALT_NAME: string;
      SUBJECT_KEY_IDENTIFIER: string;
  }

  X.509 Certificate Extensions

  • AUTHORITY_INFO_ACCESS: string

    Authority Information Access

  • AUTHORITY_KEY_IDENTIFIER: string

    Authority Key Identifier

  • BASIC_CONSTRAINTS: string

    Basic Constraints

  • CERTIFICATE_POLICIES: string

    Certificate Policies

  • CRL_DISTRIBUTION_POINTS: string

    CRL Distribution Points

  • CRL_NUMBER: string

    CRL Number

  • CRL_REASON_CODE: string

    CRL Reason Code

  • EXTENDED_KEY_USAGE: string

    Extended Key Usage

  • KEY_USAGE: string

    Key Usage

  • SUBJECT_ALT_NAME: string

    Subject Alternative Name

  • SUBJECT_KEY_IDENTIFIER: string

    Subject Key Identifier

• getOidFriendlyName: (oid: string) => string

• HASH: {
      HMAC_SHA1: string;
      HMAC_SHA256: string;
      HMAC_SHA384: string;
      HMAC_SHA512: string;
      MD5: string;
      SHA1: string;
      SHA256: string;
      SHA384: string;
      SHA512: string;
  }

  Hash Functions

  • HMAC_SHA1: string

    HMAC with SHA-1

  • HMAC_SHA256: string

    HMAC with SHA-256

  • HMAC_SHA384: string

    HMAC with SHA-384

  • HMAC_SHA512: string

    HMAC with SHA-512

  • MD5: string

    MD5 Hash

  • SHA1: string

    SHA-1 Hash

  • SHA256: string

    SHA-256 Hash

  • SHA384: string

    SHA-384 Hash

  • SHA512: string

    SHA-512 Hash

• OTHER_REV_INFO: { OCSP: string }

  OTHER_REV_INFO

  • OCSP: string

    OCSP

• PKCS12: {
      BAGS: {
          CERT_BAG: string;
          CRL_BAG: string;
          KEY_BAG: string;
          PKCS8_SHROUDED_KEY_BAG: string;
          SAFE_CONTENTS_BAG: string;
          SECRET_BAG: string;
      };
      CERT_TYPES: { SDSI_CERT: string; X509_CERT: string };
      PBE: {
          SHA1_3DES_2KEY_CBC: string;
          SHA1_3DES_3KEY_CBC: string;
          SHA1_RC2_128_CBC: string;
          SHA1_RC2_40_CBC: string;
          SHA1_RC4_128: string;
          SHA1_RC4_40: string;
      };
  }

  PKCS#12 OIDs

  • BAGS: {
        CERT_BAG: string;
        CRL_BAG: string;
        KEY_BAG: string;
        PKCS8_SHROUDED_KEY_BAG: string;
        SAFE_CONTENTS_BAG: string;
        SECRET_BAG: string;
    }

    Bag types under pkcs-12PbeIds

    • CERT_BAG: string

      certBag

    • CRL_BAG: string

      crlBag

    • KEY_BAG: string

      keyBag

    • PKCS8_SHROUDED_KEY_BAG: string

      pkcs8ShroudedKeyBag

    • SAFE_CONTENTS_BAG: string

      safeContentsBag

    • SECRET_BAG: string

      secretBag

  • CERT_TYPES: { SDSI_CERT: string; X509_CERT: string }

    Certificate types inside CertBag

    • SDSI_CERT: string

      sdsiCertificate

    • X509_CERT: string

      x509Certificate

  • PBE: {
        SHA1_3DES_2KEY_CBC: string;
        SHA1_3DES_3KEY_CBC: string;
        SHA1_RC2_128_CBC: string;
        SHA1_RC2_40_CBC: string;
        SHA1_RC4_128: string;
        SHA1_RC4_40: string;
    }

    Password-based encryption schemes (pkcs-12PbeIds)

    • SHA1_3DES_2KEY_CBC: string

      pbeWithSHAAnd2-KeyTripleDES-CBC

    • SHA1_3DES_3KEY_CBC: string

      pbeWithSHAAnd3-KeyTripleDES-CBC

    • SHA1_RC2_128_CBC: string

      pbeWithSHAAnd128BitRC2-CBC

    • SHA1_RC2_40_CBC: string

      pbeWithSHAAnd40BitRC2-CBC

    • SHA1_RC4_128: string

      pbeWithSHAAnd128BitRC4

    • SHA1_RC4_40: string

      pbeWithSHAAnd40BitRC4

• PKCS5: { PBES2: string; PBKDF2: string }

  PKCS#5 OIDs

  • PBES2: string

    Password-Based Encryption Scheme 2

  • PBKDF2: string

    PBKDF2 Key Derivation Function

• PKCS7: {
      AUTH_ENVELOPED_DATA: string;
      AUTHENTICATED_DATA: string;
      DATA: string;
      DIGESTED_DATA: string;
      ENCRYPTED_DATA: string;
      ENVELOPED_DATA: string;
      SIGNED_AND_ENVELOPED_DATA: string;
      SIGNED_DATA: string;
  }

  PKCS#7/CMS Content Types

  • AUTH_ENVELOPED_DATA: string

    AuthEnvelopedData content type

  • AUTHENTICATED_DATA: string

    AuthenticatedData content type

  • DATA: string

    Data content type

  • DIGESTED_DATA: string

    DigestedData content type

  • ENCRYPTED_DATA: string

    EncryptedData content type

  • ENVELOPED_DATA: string

    EnvelopedData content type

  • SIGNED_AND_ENVELOPED_DATA: string

    SignedAndEnvelopedData content type

  • SIGNED_DATA: string

    SignedData content type

• PKCS9: {
      CHALLENGE_PASSWORD: string;
      CONTENT_TYPE: string;
      EMAIL_ADDRESS: string;
      ETS_COMMITMENT_TYPE_INDICATION: string;
      ETS_REVOCATION_VALUES: string;
      ETS_SIGNATURE_POLICY_IDENTIFIER: string;
      ETS_SIGNING_CERTIFICATE: string;
      ETS_SIGNING_CERTIFICATE_V2: string;
      ETS_SIGNING_LOCATION: string;
      EXTENSION_REQUEST: string;
      MESSAGE_DIGEST: string;
      SIGNING_TIME: string;
      TIME_STAMP_TOKEN: string;
  }

  PKCS#9 Attributes

  • CHALLENGE_PASSWORD: string

    Challenge Password

  • CONTENT_TYPE: string

    Content Type

  • EMAIL_ADDRESS: string

    Email Address

  • ETS_COMMITMENT_TYPE_INDICATION: string

    Commitment Type Indication

  • ETS_REVOCATION_VALUES: string

    Revocation Values

  • ETS_SIGNATURE_POLICY_IDENTIFIER: string

    Signature Policy Identifier

  • ETS_SIGNING_CERTIFICATE: string

    Signing Certificate

  • ETS_SIGNING_CERTIFICATE_V2: string

    Signing Certificate V2

  • ETS_SIGNING_LOCATION: string

    Signing Location

  • EXTENSION_REQUEST: string

    Extension Request

  • MESSAGE_DIGEST: string

    Message Digest

  • SIGNING_TIME: string

    Signing Time

  • TIME_STAMP_TOKEN: string

    Time Stamp Token

• PKIX: { ID_PKIX_OCSP_BASIC: string; ID_PKIX_OCSP_NONCE: string }

  PKIX (Public Key Infrastructure X.509)

  • ID_PKIX_OCSP_BASIC: string

    OCSP Basic Response

  • ID_PKIX_OCSP_NONCE: string

    OCSP Nonce Extension

• RSA: {
      ENCRYPTION: string;
      MD2_WITH_RSA: string;
      MD5_WITH_RSA: string;
      MGF1: string;
      PSPECIFIED: string;
      RSAES_OAEP: string;
      RSASSA_PSS: string;
      SHA1_WITH_RSA: string;
      SHA256_WITH_RSA: string;
      SHA384_WITH_RSA: string;
      SHA512_WITH_RSA: string;
  }

  RSA Algorithms

  • ENCRYPTION: string

    RSA Encryption

  • MD2_WITH_RSA: string

    MD2 with RSA Signature

  • MD5_WITH_RSA: string

    MD5 with RSA Signature

  • MGF1: string

    Mask Generation Function 1

  • PSPECIFIED: string

    P Source specified directly (id-pSpecified)

  • RSAES_OAEP: string

    RSAES-OAEP Key Transport

  • RSASSA_PSS: string

    RSASSA-PSS Signature

  • SHA1_WITH_RSA: string

    SHA-1 with RSA Signature

  • SHA256_WITH_RSA: string

    SHA-256 with RSA Signature

  • SHA384_WITH_RSA: string

    SHA-384 with RSA Signature

  • SHA512_WITH_RSA: string

    SHA-512 with RSA Signature