RFC Errata
RFC 5480, "Elliptic Curve Cryptography Subject Public Key Information", March 2009
Source of RFC: pkix (sec)See Also: RFC 5480 w/ inline errata
Errata ID: 6670
Status: Verified
Type: Technical
Publication Format(s) : TEXT
Reported By: Corey Bonnell
Date Reported: 2021-08-31
Verifier Name: Benjamin Kaduk
Date Verified: 2021-09-01
Section 3 says:
If the keyUsage extension is present in a certificate that indicates id-ecDH or id-ecMQV in SubjectPublicKeyInfo, then the following values MUST NOT be present: digitalSignature; nonRepudiation; keyTransport; keyCertSign; and cRLSign.
It should say:
If the keyUsage extension is present in a certificate that indicates id-ecDH or id-ecMQV in SubjectPublicKeyInfo, then the following values MUST NOT be present: digitalSignature; nonRepudiation; keyEncipherment; keyCertSign; and cRLSign.
Notes:
"keyTransport" KU bit name does not exist; I believe "keyEncipherment" is intended here instead.
While RFC 8813 makes it clear that "keyEncipherment" and "dataEncipherment" are prohibited, I'm marking this erratum as "Technical" due the reference to a non-existent bit name.