Skip Headers

Oracle® Application Server Certificate Authority Administrator's Guide
10g (9.0.4)
Part No. B10663-02
  Go To Table Of Contents
Contents		 Go To Documentation Library
Home		Go To Product List
Solution Area		Go To Index
Index
Previous Next  

D Extensions

Oracle Application Server Certificate Authority is compliant with the X.509 V3 and IETF's PKIX standards, and supports the following extensions:

  1. OCA's CA certificates contain the following extensions

    1. Basic Constraints Extension: Critical

      • CA flag set to true

      • PathLength for root (self-sign) certificate is hardcoded to 3.

      • PathLength for sub CA is between 0 and 2, depending on the pathlength of issuer's (upper CA) certificate.

    2. KeyUsage Extension: Critical

    The following bits are set on:

  1. OCA's End-Entity SSL/Encryption Certificates

    1. Key Usage Extension: Non-Critical

    The following bits set on:

  1. Code signing certificates

    1. Key Usage Extension: Non-Critical

    The following bits are set on:

  1. SMIME-Signing Certificates

    1. Key Usage Extension: Non-Critical

    The following bits set on:

  Previous Next
Oracle Logo
Copyright © 2002, 2004, Oracle. All rights reserved.
  Go To Table Of Contents
Contents		 Go To Documentation Library
Home		Go To Product List
Solution Area		Go To Index
Index