[Owasp-leaders] [Owasp-community] Strange OIDs in TLS certificates

Timo Goosen timo.goosen at owasp.org
Fri May 29 10:22:41 UTC 2015


Best place to ask would be to ask the OpenBSD guys who are working on
LibreSSL.

Ask on the OpenBSD misc mailing list:
http://lists.openbsd.org/cgi-bin/mj_wwwusr?user=&passw=&func=lists-long-full&extra=misc

Or email Theo De Raadt directly.

Regards.
Timo

On Wed, May 27, 2015 at 11:01 PM, Enrico Branca <enrico.branca at owasp.org>
wrote:

> Hi all,
>
> I have been working on a research on SSL/TLS certificates and found lots
> of certificates with several OIDs pointing to "Signature Algorithms" of
> which I am not able to find any reference or document anywhere.
>
> Here the list of mysterious OID with how many time I have seen them.
>
> 2.16.56.2.1.4.1.1.38806.1 --> 1 cert
> 1.2.840.10040.0.67 --> 1 cert
> 1.2.156.10197.1.501 --> 1 cert
> 1.2.840.113037.1.1.5 --> 1 cert
> 1.2.840.113548.1.1.5 --> 1 cert
> 1.2.840.113549.1.1.99 --> 1 cert
> 1.2.840.113549.1.60.20 --> 1 cert
> 1.2.840.114573.1.1.5 --> 1 cert
> 1.3.36.3.3.1.4 --> 1 cert
> 2.1.67.51.46.111.102.102.105.99 --> 1 cert
> 2.1516.1228544.0.0.1.0 --> 1 cert
> 1.2.840.113549.1.60.18 --> 3 certs
> 1.3.6.1.4.1.37210.1.1 --> 4 certs
> 1.2.840.10040.14403 --> 5 certs
> 1.2.840.113549.1.60.28 --> 8 certs
> 1.2.840.113549.1.60.29 --> 231 certs
> 1.2.840.113549.1.60.26 --> 2,122 certs
> 1.2.840.113549.1.60.27 --> 99,652 certs
> 1.2.840.113549.1.60.20 --> 112,634 certs
> 1.2.840.113549.1.60.21 --> 313,680 certs
>
> Does anyone has any idea on what these OIDs should stand for?
>
> Any suggestion on where to look for these information would be greatly
> appreciated.
>
> Kind regards,
> Enrico Branca
> _______________________________________________
> Owasp-community mailing list
> Owasp-community at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-community
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20150529/3717a03e/attachment.html>


More information about the OWASP-Leaders mailing list