Search RFCs
RFC 6024
Trust Anchor Management Requirements,October 2010
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC6024
Discuss this RFC: Send questions or comments to the mailing listpkix@ietf.org
Other actions:Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 6024
Abstract
A trust anchor represents an authoritative entity via a public keyand associated data. The public key is used to verify digitalsignatures, and the associated data is used to constrain the types ofinformation for which the trust anchor is authoritative. A relyingparty uses trust anchors to determine if a digitally signed object isvalid by verifying a digital signature using the trust anchor'spublic key, and by enforcing the constraints expressed in theassociated data for the trust anchor. This document describes someof the problems associated with the lack of a standard trust anchormanagement mechanism and defines requirements for data formats andpush-based protocols designed to address these problems. This document is not an Internet Standards Track specification; it ispublished for informational purposes.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.