I don't believe there are any hard-and-fast rules about which to use. In most situations it's perhaps a personal design choice. However, as David pointed out implicit tagging seems to be the default with explict used only when necessary. I don't recall the particulars right now but implicit tagging of a CHOICE within another CHOICE is a real pain to deal with and so explicit tagging may be preferable in this case.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of sravan Sent: Thursday, 8 September 2005 4:44 PM To: openssl-users@openssl.org Subject: Re: OCSP, Nonce and the requestExtensions Hi Steven, I understood what will be the encoding when we use explicit & implicit tagging. that is what you explained. But what i really want to know is - In which context we will use explict tagging & in which context we will use implicit tagging. - Sravan Steven Reddie wrote: >By using explicit tagging the underlying object is encoded as it would >be if standalone. Implict tagging avoids adding a wrapper around the >object but results in the underlying object being slightly altered. > >As an example, the encoding of the certificate within MyStructExplicit >will be the same as the encoding on MyCertificate (for the same >certificate), whereas the encoding of the certificate within >MyStructImplicit will be different due to the tag being modified. > > MyCertificate ::= Certificate > > MyStructExplicit ::= SEQUENCE { > certificate [0] EXPLICIT Certificate } > > MyStructImplicit ::= SEQUENCE { > certificate [0] IMPLICIT Certificate } > >Is that any clearer? > >-----Original Message----- >From: [EMAIL PROTECTED] >[mailto:[EMAIL PROTECTED] On Behalf Of sravan >Sent: Thursday, 8 September 2005 3:53 PM >To: openssl-users@openssl.org >Subject: Re: OCSP, Nonce and the requestExtensions > >Hi Steven, >I would like to know point 2. > >- Sravan > > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
