Certificate objects

Sections
X.509 public key certificate objects
X.509 attribute certificate objects

Detailed Description

The following figure illustrates details of certificate objects:

Figure 7, Certificate Object Attribute Hierarchy

Certificate objects (object class CKO_CERTIFICATE) hold public-key or attribute certificates. Other than providing access to certificate objects, Cryptoki does not attach any special meaning to certificates. The following table defines the common certificate object attributes, in addition to the common attributes listed in Table 14 and Table 18 :

Table 20, Common Certificate Object Attributes
Attribute Data type Meaning

CKA_CERTIFICATE_TYPE¹ CK_CERTIFICATE_TYPE Type of certificate

¹Must be specified when the object is created.

The CKA_CERTIFICATE_TYPE attribute may not be modified after an object is created.

RSA Security Inc. Public-Key Cryptography Standards - PKCS#11 - v210

Attribute	Data type	Meaning
CKA_CERTIFICATE_TYPE¹	CK_CERTIFICATE_TYPE	Type of certificate

Certificate objects

Sections

Detailed Description