Document Action: 'Other Certificates Extension' to Experimental RFC

The IESG <> Mon, 28 September 2009 18:39 UTC

Return-Path: <>
Received: by (Postfix, from userid 30) id CA24B3A69D6; Mon, 28 Sep 2009 11:39:10 -0700 (PDT)
X-idtracker: yes
From: The IESG <>
To: IETF-Announce <>
Subject: Document Action: 'Other Certificates Extension' to Experimental RFC
Message-Id: <>
Date: Mon, 28 Sep 2009 11:39:10 -0700
Cc: pkix mailing list <>, pkix chair <>, Internet Architecture Board <>, RFC Editor <>
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 28 Sep 2009 18:39:10 -0000

The IESG has approved the following document:

- 'Other Certificates Extension '
   <draft-ietf-pkix-other-certs-05.txt> as an Experimental RFC

This document is the product of the Public-Key Infrastructure (X.509) Working Group. 

The IESG contact persons are Tim Polk and Pasi Eronen.

A URL of this Internet-Draft is:

Technical Summary

This document defines a new X.509 certificate extension that
allows applications to link together a set of certificates
belonging to the same end entity, which can safely be
considered to be equivalent.  The extension is inserted in a new
certificate, which is considered equivalent to another previously
issued certificate. The equivalent certificate is referenced using
a certificate identifier defined in SCVP (RFC 5055).

Working Group Summary

This work received a fair amount of comments when it was
proposed which lead to a number of updates to the original
proposal. After this initial alignment there have only been a
few minor comments on the draft.

Document Quality

The extension defined in this document has a very simple
structure. The document should be more than adequate to allow
interoperable implementations.


   Stefan Santesson is the Document Shepherd for this document.
   Tim Polk is the Responsible Area Director.