CERT_ACCESS_DESCRIPTION (Compact 2013)

  • Article

3/28/2014

This structure is a member of a CERT_AUTHORITY_INFO_ACCESS structure. It contains one instance of information on how to access certification authority (CA) information and services for the issuer of the certificate in which the CERT_AUTHORITY_INFO_ACCESS extension appears. Information and services can include online validation services and CA policy data.

Syntax

typedef struct _CERT_ACCESS_DESCRIPTION {
  LPSTR pszAccessMethod;
  CERT_ALT_NAME_ENTRY AccessLocation;
} CERT_ACCESS_DESCRIPTION, *PCERT_ACCESS_DESCRIPTION;

Members

  • pszAccessMethod
    Object identifier (OID) for the method of access. The following PKIX Access Method OIDs are currently defined:

    • szOID_PKIX_OCSP
    • szOID_PKIX_CA_ISSUERS

  • AccessLocation
    CERT_ALT_NAME_ENTRY structure that describes the online status server and the access protocol to obtain current certificate status information for the certificate containing the extension.

    For the szOID_PKIX_OCSP access method, AccessLocation describes the online status server and the access protocol needed to obtain status information about the certificate containing this extension.

    For the szOID_PKIX_CA_ISSUERS access method, AccessLocation obtains information on the CAs that issued certificates superior to the CA that issued the certificate containing this extension. The CA issuer's description is intended to aid certificate users in the selection of a certification path that terminates at a point trusted by the certificate user.

Requirements

Header

wincrypt.h

See Also

Reference

Cryptography Structures
CERT_ALT_NAME_ENTRY
CERT_AUTHORITY_INFO_ACCESS