OpenSSL "ans1parse" - Wrap of SEQUENCE Structure

Q

What is the wrap of an ASN.1 SEQUENCE structure?

✍: FYIcenter.com

A

The wrap of an ASN.1 SEQUENCE structure is the binary string of ASN.1 SEQUENCE structure in DER format stored in an BIT STRING or OCTET STRING field in another ASN.1 SEQUENCE structure.

The main purpose of using the SEQUENCE wrap is to make the SEQUENCE structure invisible in the enclosing SEQUENCE.

For example, we have the following nested SEQUENCE structure:

Question SEQUENCE:{
   trackingNumber = INTEGER:5
   questionText   = IA5STRING:"In asymmetric encryption, which key can be given out?"
   answerOption   = SEQUENCE:{
      optionA = IA5STRING:"A) Private key"
      optionB = IA5STRING:"B) Public key"
      optionC = IA5STRING:"C) Both keys"
   }
}

If we want to make answerOption SEQUENCE invisible, we can BIT STRING to wrap it:

Question SEQUENCE:{
   trackingNumber = INTEGER:5
   questionText   = IA5STRING:"In asymmetric encryption, which key can be given out?"
   answerOption   = BITSTRING: (DER binary string of answerOption)
}

The test below is a demonstration of storing a SEQUENCE wrap as a BIT STRING:

C:\Users\fyicenter>type asn1_question_option.cnf
asn1 = SEQUENCE:optionSection

[optionSection]
optionA = IA5STRING:"A) Private key"
optionB = IA5STRING:"B) Public key"
optionC = IA5STRING:"C) Both keys"

C:\Users\fyicenter>\local\openssl\openssl asn1parse 
   -genconf asn1_question_option.cnf -out question_option.der
    0:d=0  hl=2 l=  45 cons: SEQUENCE
    2:d=1  hl=2 l=  14 prim: IA5STRING         :A) Private key
   18:d=1  hl=2 l=  13 prim: IA5STRING         :B) Public key
   33:d=1  hl=2 l=  12 prim: IA5STRING         :C) Both keys

C:\Users\fyicenter>bin2hex question_option.der test.hex
302d160e41292050726976617465206b6579160d4229205075626c6963206b65
79160c432920426f7468206b657973

C:\Users\fyicenter>type asn1_question_wrap.cnf
asn1 = SEQUENCE:questionSection

[questionSection]
trackingNumber = INTEGER:5
questionText   = IA5STRING:"In asymmetric encryption, which key can be given out?"
answerOption   = FORMAT:HEX,BITSTRING:302d160e41292050726976617465206b\
6579160d4229205075626c6963206b6579160c432920426f7468206b657973

C:\Users\fyicenter>\local\openssl\openssl asn1parse 
   -genconf asn1_question_wrap.cnf -out question_wrap.der
    0:d=0  hl=2 l= 108 cons: SEQUENCE
    2:d=1  hl=2 l=   1 prim: INTEGER           :05
    5:d=1  hl=2 l=  53 prim: IA5STRING         :In asymmetric encryption, 
                                                which key can be given out?
   60:d=1  hl=2 l=  48 prim: BIT STRING

C:\Users\fyicenter>\local\openssl\openssl asn1parse -genc
onf asn1_question_wrap.cnf -out question_wrap.der -strparse 60
    0:d=0  hl=2 l=  45 cons: SEQUENCE
    2:d=1  hl=2 l=  14 prim: IA5STRING         :A) Private key
   18:d=1  hl=2 l=  13 prim: IA5STRING         :B) Public key
   33:d=1  hl=2 l=  12 prim: IA5STRING         :C) Both keys

Note that "asn1parse -strparse 60" command is smart to know that the BIT STRING field at 0x60 offset is a SEQUENCE wrap.

⇒ OpenSSL "ans1parse" - BITWRAP and OCTWRAP Modifiers

⇐ OpenSSL "ans1parse" - ASN.1 OCTET STRING Field Type

⇑ OpenSSL "ans1parse" Command

⇑⇑ OpenSSL Tutorials

2016-09-28, ∼6931🔥, 0💬

OpenSSL "ans1parse" - ASN.1 BIT STRING Field Type
What is ASN.1 BIT STRING field type? How to specify BIT STRING field type in OpenSSL "asn1parse" command? ASN.1 BIT STRING field is a primitive field that can be used to store bit strings of any size. To use ASN.1 BIT STRING field in OpenSSL "asn1parse" command, you need to remember the following ru... 2016-09-30, ≈13🔥, 0💬

OpenSSL "ans1parse" - ASN.1 OCTET STRING Field Type
What is ASN.1 OCTET STRING field type? How to specify OCTET STRING field type in OpenSSL "asn1parse" command? ASN.1 OCTET STRING field is a primitive field that can be used to store byte strings of any size. To use ASN.1 OCTET STRING field in OpenSSL "asn1parse" command, you need to remember the fol... 2016-09-28, ≈13🔥, 0💬

OpenSSL "ans1parse" - DER (Distinguished Encoding Rules)
What is the DER (Distinguished Encoding Rules) encoding used in the OpenSSL "asn1parse" command? DER (Distinguished Encoding Rules) is an encoding schema to convert an ASN.1 data structure into a binary string. In other words, DER is a serialization schema for the ASN.1 data structure. DER is one th... 2016-09-28, ∼9849🔥, 0💬

OpenSSL "ans1parse" - ASN.1 OBJECT IDENTIFIER Field Type
What is ASN.1 OBJECT IDENTIFIER field type? How to specify OBJECT IDENTIFIER field type in OpenSSL "asn1parse" command? ASN.1 OBJECT IDENTIFIER field is a primitive field that can be used to store an Object Identifier (OID) defined in the ASN.1 standard. An OID has 3 equivalent values: short name, l... 2016-09-30, ∼9779🔥, 0💬

OpenSSL "ans1parse" - ASN.1 INTEGER Field Type
What is ASN.1 INTEGER field type? How to specify INTEGER field type in OpenSSL "asn1parse" command? ASN.1 INTEGER field is a primitive field that can be used to store signed integers of any size. To use ASN.1 INTEGER field in OpenSSL "asn1parse" command, you need to remember the following rules: ASN... 2016-09-30, ∼9438🔥, 0💬

OpenSSL "ans1parse" - ASN.1 IA5STRING Field Type
What is ASN.1 IA5STRING field type? How to specify IA5STRING field type in OpenSSL "asn1parse" command? ASN.1 IA5STRING field is a primitive field that can be used to store IA5 (ISO 646) character strings. IA5 character set is generally equivalent to ASCII character set. To use ASN.1 IA5STRING field... 2016-09-30, ∼8937🔥, 0💬

OpenSSL "ans1parse" - BITWRAP and OCTWRAP Modifiers
What are BITWRAP and OCTWRAP modifiers in the configuration file for the OpenSSL "asn1parse" command? BITWRAP and OCTWRAP modifiers in OpenSSL configuration files are used to automatically wrap a SEQUENCE structure into a BIT STRING or OCTET STRING field. The test below is a demonstration of using B... 2016-09-28, ∼7829🔥, 0💬

OpenSSL "ans1parse" - Configuration File for RSA Private Key
Can I build an RSA private key from an OpenSSL configuration file? Yes, you can build an RSA private key from an OpenSSL configuration file, if you know the components of the key, as shown in the test below: C:\Users\fyicenter>type asn1_rsa_pri_key.cnf asn1 = SEQUENCE:rsa_pri_key [rsa_pri_key... 2016-09-27, ∼7294🔥, 0💬

OpenSSL "ans1parse" - Wrap of SEQUENCE Structure
What is the wrap of an ASN.1 SEQUENCE structure? The wrap of an ASN.1 SEQUENCE structure is the binary string of ASN.1 SEQUENCE structure in DER format stored in an BIT STRING or OCTET STRING field in another ASN.1 SEQUENCE structure. The main purpose of using the SEQUENCE wrap is to make the SEQUEN... 2016-09-28, ∼6932🔥, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.