Search RFCs
RFC 9480
Certificate Management Protocol (CMP) Updates,November 2023
- File formats:
- Also available:XML file for editing
- Status:
- PROPOSED STANDARD
- Obsoleted by:
- RFC 9810,RFC 9811
- Updates:
- RFC 4210,RFC 5912,RFC 6712
- Authors:
- H. Brockhaus
D. von Oheimb
J. Gray - Stream:
- IETF
- Source:
- lamps (sec)
Cite this RFC:TXT | XML | BibTeX
DOI: https://doi.org/10.17487/RFC9480
Discuss this RFC: Send questions or comments to the mailing listspasm@ietf.org
Other actions:View Errata | Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 9480
Abstract
This document contains a set of updates to the syntax of CertificateManagement Protocol (CMP) version 2 and its HTTP transfer mechanism.This document updates RFCs 4210, 5912, and 6712.
The aspects of CMP updated in this document are using EnvelopedDatainstead of EncryptedValue, clarifying the handling of p10cr messages,improving the crypto agility, as well as adding new general messagetypes, extended key usages to identify certificates for use with CMP,and well-known URI path segments.
CMP version 3 is introduced to enable signaling support ofEnvelopedData instead of EncryptedValue and signal the use of anexplicit hash AlgorithmIdentifier in certConf messages, as far asneeded.
For the definition ofStatus,seeRFC 2026.
For the definition ofStream, seeRFC 8729.