1、 ETSI TS 119 614-1 V1.1.1 (2016-06) Electronic Signatures and Infrastructures (ESI); Testing Conformance and Interoperability of Trusted Lists; Part 1: Specifications for testing conformance of XML representation of Trusted Lists TECHNICAL SPECIFICATION ETSI ETSI TS 119 614-1 V1.1.1 (2016-06)2 Refer
2、ence DTS/ESI-0019614-1 Keywords conformance, electronic signature, security, testing ETSI 650 Route des Lucioles F-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de G
3、rasse (06) N 7803/88 Important notice The present document can be downloaded from: http:/www.etsi.org/standards-search The present document may be made available in electronic versions and/or in print. The content of any electronic and/or print versions of the present document shall not be modified
4、without the prior written authorization of ETSI. In case of any existing or perceived difference in contents between such versions and/or in print, the only prevailing document is the print of the Portable Document Format (PDF) version kept on a specific network drive within ETSI Secretariat. Users
5、of the present document should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at https:/portal.etsi.org/TB/ETSIDeliverableStatus.aspx If you find errors in the present document, please send yo
6、ur comment to one of the following services: https:/portal.etsi.org/People/CommiteeSupportStaff.aspx Copyright Notification No part may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and microfilm except as authorized by written permission of
7、ETSI. The content of the PDF version shall not be modified without the written authorization of ETSI. The copyright and the foregoing restriction extend to reproduction in all media. European Telecommunications Standards Institute 2016. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTMand the ETSI lo
8、go are Trade Marks of ETSI registered for the benefit of its Members. 3GPPTM and LTE are Trade Marks of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and owned by the GSM Association. ETSI ETSI TS 119 614-1 V1.
9、1.1 (2016-06)3 Contents Intellectual Property Rights 6g3Foreword . 6g3Modal verbs terminology 6g31 Scope 7g32 References 7g32.1 Normative references . 7g32.2 Informative references 8g33 Abbreviations . 8g34 Overview 8g35 Testing Trusted Lists 9g35.1 Testing auxiliary types . 9g35.1.1 Testing multili
10、ngual string types 9g35.1.1.1 Testing lang attribute. 9g35.1.1.2 Testing tsl:NonEmptyString type 9g35.1.1.3 Testing tsl:NonEmptyNormalizedString type . 10g35.1.1.4 Testing tsl:MultiLangStringType type 10g35.1.1.5 Testing tsl:MultiLangNormStringType type . 11g35.1.2 Testing tsl:InternationalNamesType
11、 type . 11g35.1.3 Testing tsl:InternationalNamesType type . 11g35.1.4 Testing types for managing URIs . 11g35.1.4.1 Testing tsl:NonEmptyURIType type. 11g35.1.4.2 Testing tsl:NonEmptyURIListType type 12g35.1.4.3 Testing tsl:NonEmptyMultiLangURIType type 12g35.1.4.4 Testing tsl:NonEmptyMultiLangURILis
12、tType type . 12g35.1.5 Testing Country Codes . 12g35.1.5.1 Test assertions common to Trusted Lists from EUMS, from non EUMS, and the List of Lists from European Commission 12g35.1.5.2 Test assertions for non EUMS Trusted Lists . 12g35.1.5.3 Test assertions for exceptions within EUMS Trusted Lists 13
13、g35.1.6 Testing tsl:AddressType type . 13g35.1.6.1 Introduction . 13g35.1.6.2 Testing tsl:PostalAddressListType type 13g35.1.6.3 Testing tsl:ElectronicAddressType type . 13g35.2 Testing the elements of the XML representation of the Trusted List . 14g35.2.1 Introduction. 14g35.2.2 Testing TSLTag attr
14、ibute 14g35.2.3 Testing tsl:SchemeInformation element . 14g35.2.3.1 Testing tsl:TSLVersionIdentifier element . 14g35.2.3.2 Testing tsl:TSLSequenceNumber element 14g35.2.3.3 Testing tsl:TSLType element 15g35.2.3.3.1 Test assertions for EUMS Trusted Lists 15g35.2.3.3.2 Test assertions for EC List of L
15、ists 15g35.2.3.3.3 Test assertions for non EUMS Trusted Lists . 15g35.2.3.4 Testing tsl:SchemeOperatorName element . 16g35.2.3.5 Testing tsl:SchemeOperatorAddress element . 16g35.2.3.6 Testing tsl:SchemeName element . 16g35.2.3.7 Testing tsl:SchemeInformationURI element . 16g35.2.3.8 Testing tsl:Sta
16、tusDeterminationApproach element . 17g35.2.3.8.1 Testing tsl:StatusDeterminationApproach for EUMS Trusted Lists . 17g35.2.3.8.2 Testing tsl:StatusDeterminationApproach for non-EUMS Trusted Lists 17g35.2.3.9 Testing tsl:SchemeTypeCommunityRules element 17g35.2.3.9.1 Introduction . 17g35.2.3.9.2 Test
17、assertions specific to EUMS Trusted Lists 18g35.2.3.9.3 Test assertions specific to EC List of Trusted Lists . 18g3ETSI ETSI TS 119 614-1 V1.1.1 (2016-06)4 5.2.3.9.4 Test assertions specific to no EUMS Trusted Lists . 18g35.2.3.10 Testing tsl:SchemeTerritory element 18g35.2.3.11 Testing tsl:PolicyOr
18、LegalNotice element . 18g35.2.3.12 Testing HistoricalInformationPeriod element . 18g35.2.3.13 Testing tsl:PointersToOtherTSL element 19g35.2.3.14 Testing tsl:ListIssueDateTime element . 19g35.2.3.15 Testing tsl:NextUpdate element 19g35.2.3.16 Testing tsl:DistributionPoints element 19g35.2.3.17 Testi
19、ng tsl:SchemeExtensions element . 20g35.2.3.17.1 Test assertions for EUMS Trusted Lists 20g35.2.3.17.2 Test assertions for non EUMS Trusted Lists . 20g35.3 Testing tsl:TSPInformation element . 20g35.3.1 Testing tsl:TSPName element. 20g35.3.2 Testing tsl:TSPTradeName element . 20g35.3.3 Testing tsl:T
20、SPAddress element . 21g35.3.4 Testing tsl:TSPInformationURI element 21g35.3.5 Testing tsl:TSPInformationExtensions element 21g35.3.5.1 Test assertions for EUMS Trusted Lists 21g35.4 Testing ServiceInformation element 21g35.4.1 Testing tsl:ServiceTypeIdentifier element 21g35.4.2 Testing tsl:ServiceNa
21、me element . 22g35.4.3 Testing tsl:ServiceDigitalIdentity element 22g35.4.3.1 Test assertions common to any tsl:ServiceDigitalIdentity element . 22g35.4.3.2 Test assertions specific to tsl:ServiceDigitalIdentity child element of tsl:ServiceInformation element 23g35.4.4 Testing tsl:ServiceStatus elem
22、ent . 25g35.4.4.1 Introduction . 25g35.4.4.2 Test assertions common to any tsl:ServiceStatus element 25g35.4.4.3 Test assertions specific to tsl:ServiceStatus child element of tsl:TSPService . 25g35.4.5 Testing tsl:StatusStartingTime element 25g35.4.5.1 Test assertions common to any tsl:StatusStarti
23、ngTime element . 25g35.4.5.2 Test assertions specific tsl:StatusStartingTime child element of tsl:TSPService 26g35.4.6 Testing tsl:SchemeServiceDefinitionURI element . 26g35.4.7 Testing tsl:ServiceSupplyPoints element 26g35.4.8 Testing tsl:TSPServiceDefinitionURI element . 26g35.4.9 Testing tsl:Serv
24、iceInformationExtensions element . 26g35.4.9.1 Testing tsl:ExpiredCertsRevocationInfo element 26g35.4.9.2 Testing sie:Qualifications element 27g35.4.9.3 Testing tslx:TakenOverBy element . 28g35.4.9.4 Testing tsl:AdditionalServiceInformation element . 29g35.5 Testing tsl:ServiceHistory element . 29g3
25、5.5.1 Testing tsl:ServiceTypeIdentifier element 29g35.5.2 Testing tsl:ServiceName element . 30g35.5.3 Testing tsl:ServiceDigitalIdentity element 30g35.5.4 Testing tsl:ServiceStatus element . 31g35.5.5 Testing tsl:StatusStartingTime element 31g35.5.6 Testing tsl:ServiceInformationExtensions element .
26、 31g35.6 Testing ds:Signature element . 32g3Annex A (normative): Test assertions derived from XML Schema 35g3A.1 Introduction 35g3A.2 Testing auxiliary types contents . 35g3A.2.1 Introduction 35g3A.2.2 Testing tsl:NonEmptyNormalizedString instances . 35g3A.2.3 Testing tsl:NonEmptyString instances .
27、36g3A.2.4 Testing tsl:MultiLangStringType instances 36g3A.2.5 Testing tsl:MultiLangNormStringType instances 36g3A.2.6 Testing tsl:InternationalNamesType instances . 36g3A.2.7 Testing tsl:NonEmptyURIType instances 37g3A.2.8 Testing tsl:NonEmptyURIListType instances 37g3A.2.9 Testing tsl:NonEmptyMulti
28、LangURIType instances . 38g3ETSI ETSI TS 119 614-1 V1.1.1 (2016-06)5 A.2.10 Testing tsl:NonEmptyMultiLangURIListType instances . 38g3A.2.11 Testing tsl:AttributedNonEmptyURIType instances 38g3A.2.12 Testing tsl:AddressType instances . 39g3A.2.12.1 Testing structure . 39g3A.2.12.2 Testing tsl: Postal
29、AddressListType instances . 39g3A.2.12.2.1 Testing tsl:PostalAddressListType instances 39g3A.2.12.2.2 Testing tsl:PostalAddressType instances 40g3A.2.12.3 Testing tsl: ElectronicAddressType instances 40g3A.2.13 Testing tsl:ExtensionType instances 40g3A.2.14 Testing tsl:ExtensionsListType instances .
30、 40g3A.3 Testing Trusted List structure . 41g3A.3.1 Testing tsl:TrustServiceStatusList element 41g3A.3.2 Testing tsl:SchemeInformation element . 41g3A.3.3 Testing tsl:PolicyOrLegalNoticeType type 42g3A.3.4 Testing tsl:OtherTSLPointersType type . 42g3A.3.5 Testing tsl:ServiceDigitalIdentityListType t
31、ype . 43g3A.3.6 Testing tsl:DigitalIdentityListType type 43g3A.3.7 Testing tsl:DigitalIdentityType type . 43g3A.3.8 Testing tsl:AdditionalInformationType type 44g3A.3.9 Testing tsl:TrustServiceProviderList 44g3A.3.10 Testing tsl:TSPType type . 44g3A.3.11 Testing tsl:TSPInformationType 45g3A.3.12 Tes
32、ting tsl:TSPServicesListType . 45g3A.3.13 Testing tsl:TSPServiceType . 45g3A.3.14 Testing tsl:TSPServiceInformationType 46g3A.3.15 Testing tsl:ServiceSupplyPointsType . 46g3A.3.16 Testing tsl:ServiceHistoryType 47g3A.3.17 Testing tsl:ServiceHistoryInstanceType . 47g3A.3.18 Testing Extensions . 48g3A
33、.3.18.1 Testing tsl:AdditionalServiceInformationType type . 48g3A.3.18.2 Testing sie:QualificationsType type . 48g3A.2.18.2.1 Testing sie:QualificationsType . 48g3A.3.18.2.2 Testing sie:QualificationElement element 48g3A.3.18.2.3 Testing sie:Qualifiers element . 49g3A.3.18.2.4 Testing sie:CriteriaLi
34、stType type 49g3A.3.18.3 Testing tslx:ExtendedKeyUsageType type . 50g3A.3.18.4 Testing tslx:TakenOverByType type 50g3A.3.18.5 Testing tslx:CertSubjectDNAttribute 51g3A.3.18.6 Testing tslx:MimeType . 51g3A.4 Test assertions for xades:ObjectIdentifierType 51g3History 53g3ETSI ETSI TS 119 614-1 V1.1.1
35、(2016-06)6 Intellectual Property Rights IPRs essential or potentially essential to the present document may have been declared to ETSI. The information pertaining to these essential IPRs, if any, is publicly available for ETSI members and non-members, and can be found in ETSI SR 000 314: “Intellectu
36、al Property Rights (IPRs); Essential, or potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (https:/ipr.etsi.org/). Pursuant to the ETSI IPR Policy, no investigation, including
37、IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become, essential to the present document. Foreword This Technical Specification (TS) has bee
38、n produced by ETSI Technical Committee Electronic Signatures and Infrastructures (ESI). The present document is part 1 of a multi-part deliverable covering Testing Conformance and Interoperability of Trusted Lists, as identified below: Part 1: “Specifications for testing conformance of XML represent
39、ation of Trusted Lists“. Modal verbs terminology In the present document “shall“, “shall not“, “should“, “should not“, “may“, “need not“, “will“, “will not“, “can“ and “cannot“ are to be interpreted as described in clause 3.2 of the ETSI Drafting Rules (Verbal forms for the expression of provisions)
40、. “must“ and “must not“ are NOT allowed in ETSI deliverables except when used in direct citation. ETSI ETSI TS 119 614-1 V1.1.1 (2016-06)7 1 Scope The present document defines the set of checks to be performed for testing conformance of Trusted Lists as specified in ETSI TS 119 612 1. Checks specifi
41、ed by the present document are exclusively constrained to elements specified by ETSI TS 119 612 1, certain elements defined in ETSI TS 101 903 2, and certain elements specified in XMLSig 3. Regarding XML elements, the present document explicitly differentiates between structural requirements that ar
42、e defined by the different XML Schemas where the tested elements are defined, and the rest of the requirements specified by ETSI TS 119 612 1. The present document is intentionally not linked to any software development technology and is also intentionally agnostic on implementation strategies. This
43、 is one of the reasons why the test assertions set includes tests on the correctness of the structure of all the elements specified by the XML Schemas associated with ETSI TS 119 612 1. 2 References 2.1 Normative references References are either specific (identified by date of publication and/or edi
44、tion number or version number) or non-specific. For specific references, only the cited version applies. For non-specific references, the latest version of the referenced document (including any amendments) applies. Referenced documents which are not found to be publicly available in the expected lo
45、cation might be found at http:/docbox.etsi.org/Reference. NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. The following referenced documents are necessary for the application of the present document. 1 ETSI TS
46、119 612 (V2.2.1): “Electronic Signatures and Infrastructures (ESI); Trusted Lists“. 2 ETSI TS 101 903: “Electronic Signatures and Infrastructures (ESI); XML Advanced Electronic Signatures (XAdES)“. 3 W3C Recommendation (2008): “XML-Signature Syntax and Processing (Second Edition)“. 4 IETF RFC 2368:
47、“The mailto URL scheme“. 5 IETF RFC 3061: “A URN Namespace of Object Identifiers“. 6 IETF RFC 3986: “Uniform Resource Identifier (URI): Generic Syntax“. 7 IETF RFC 5646: “Tags for Identifying Languages“. 8 ISO/IEC 10646:2014: “Information technology - Universal Coded Character Set (UCS)“. 9 Recommen
48、dation ITU-T X.509: “Information technology - Open Systems Interconnection - The Directory: Public-key and attribute certificate frameworks“. 10 FIPS Publication 180-4 (2012): “Secure Hash Standard (SHS)“. ETSI ETSI TS 119 614-1 V1.1.1 (2016-06)8 2.2 Informative references References are either spec
49、ific (identified by date of publication and/or edition number or version number) or non-specific. For specific references, only the cited version applies. For non-specific references, the latest version of the referenced document (including any amendments) applies. NOTE: While any hyperlinks included in this clause were valid at the time of publication, ETSI cannot guarantee their long term validity. The following referenced documents are not necessary for the application of the present document but they assist the user with regard to a particu