Certificate Management Protocol (CMP) Updates, November 2023
- File formats:
- Also available: XML file for editing
- PROPOSED STANDARD
- RFC 4210, RFC 5912, RFC 6712
- H. Brockhaus
D. von Oheimb
- lamps (sec)
Discuss this RFC: Send questions or comments to the mailing list firstname.lastname@example.org
This document contains a set of updates to the syntax of Certificate Management Protocol (CMP) version 2 and its HTTP transfer mechanism. This document updates RFCs 4210, 5912, and 6712.
The aspects of CMP updated in this document are using EnvelopedData instead of EncryptedValue, clarifying the handling of p10cr messages, improving the crypto agility, as well as adding new general message types, extended key usages to identify certificates for use with CMP, and well-known URI path segments.
CMP version 3 is introduced to enable signaling support of EnvelopedData instead of EncryptedValue and signal the use of an explicit hash AlgorithmIdentifier in certConf messages, as far as needed.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.