RFC Errata
RFC 7030, "Enrollment over Secure Transport", October 2013
Note: This RFC has been updated by RFC 8951, RFC 8996
Source of RFC: pkix (sec)
Errata ID: 8397
Status: Held for Document Update
Type: Technical
Publication Format(s) : TEXT
Reported By: Angelica Semenec
Date Reported: 2025-04-28
Held for Document Update by: Deb Cooley
Date Held: 2025-06-27
Section 3 says:
+--------------+--------------------+-------------------------------+ | EST server | A CA | Presented by the EST server | | certificate | authenticatable by | during the TLS handshake. | | | a third-party TA, | | | | e.g., a web server | Section 3.3.1 and | | | CA | Security Considerations | +--------------+--------------------+-------------------------------+
It should say:
+--------------+--------------------+-------------------------------+ | Third-party | A CA | Presented by the EST server | | EST server | authenticatable by | during the TLS handshake. | | certificate | a third-party TA, | | | | e.g., a web server | Section 3.3.1 and | | | CA | Security Considerations | +--------------+--------------------+-------------------------------+
Notes:
In Figure 3, second row under the header should specify this information is for the "Third-party" EST server certificate (similar to row 3 for "Third-party EST client certificate")