Search RFCs

Encryption Key Derivation in the Cryptographic Message Syntax (CMS) Using HKDF with SHA-256,January 2025

File formats:
: Also available:XML file for editing
Status:: PROPOSED STANDARD
Author:: R. Housley
Stream:: IETF
Source:: lamps (sec)

Cite this RFC:TXT | XML | BibTeX

DOI: https://doi.org/10.17487/RFC9709

Discuss this RFC: Send questions or comments to the mailing listspasm@ietf.org

Other actions:Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 9709

Abstract

This document specifies the derivation of the content-encryption keyor the content-authenticated-encryption key in the CryptographicMessage Syntax (CMS) using the HMAC-based Extract-and-Expand KeyDerivation Function (HKDF) with SHA-256. The use of this mechanismprovides protection against an attacker that manipulates thecontent-encryption algorithm identifier or thecontent-authenticated-encryption algorithm identifier.

For the definition ofStatus,seeRFC 2026.

For the definition ofStream, seeRFC 8729.

IAB •IANA •IETF •IRTF •ISE •ISOC •IETF Trust
Reports •Privacy Statement •Site Map •Contact Us

Movatterモバイル変換

Search RFCs

RFC Editor

RFC 9709

Encryption Key Derivation in the Cryptographic Message Syntax (CMS) Using HKDF with SHA-256,January 2025

Abstract