RFC 8603

Commercial National Security Algorithm (CNSA) Suite Certificate and Certificate Revocation List (CRL) Profile, May 2019

File formats:
icon for text file icon for PDF icon for HTML
M. Jenkins
L. Zieglar

Cite this RFC: TXT  |  XML  |   BibTeX

DOI:  https://doi.org/10.17487/RFC8603

Discuss this RFC: Send questions or comments to the mailing list rfc-ise@rfc-editor.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC 8603


This document specifies a base profile for X.509 v3 Certificates and X.509 v2 Certificate Revocation Lists (CRLs) for use with the United States National Security Agency's Commercial National Security Algorithm (CNSA) Suite. The profile applies to the capabilities, configuration, and operation of all components of US National Security Systems that employ such X.509 certificates. US National Security Systems are described in NIST Special Publication 800-59. It is also appropriate for all other US Government systems that process high-value information. It is made publicly available for use by developers and operators of these and any other system deployments.

For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.

Advanced Search