Document Action: 'Suite B Profile of Certificate Management over CMS' to Informational RFC

The IESG <> Mon, 30 August 2010 17:28 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 2AFF43A69EA; Mon, 30 Aug 2010 10:28:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -102.478
X-Spam-Status: No, score=-102.478 tagged_above=-999 required=5 tests=[AWL=0.121, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id ItyQC5c3VC1L; Mon, 30 Aug 2010 10:28:27 -0700 (PDT)
Received: from [] (localhost []) by (Postfix) with ESMTP id 99A1B3A69DB; Mon, 30 Aug 2010 10:28:26 -0700 (PDT)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <>
To: IETF-Announce <>
Subject: Document Action: 'Suite B Profile of Certificate Management over CMS' to Informational RFC
X-Test-IDTracker: no
Message-ID: <20100830172826.28764.43699.idtracker@localhost>
Date: Mon, 30 Aug 2010 10:28:26 -0700
Cc: Internet Architecture Board <>, RFC Editor <>
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Mon, 30 Aug 2010 17:28:28 -0000

The IESG has approved the following document:
- 'Suite B Profile of Certificate Management over CMS'
  <draft-turner-suiteb-cmc-03.txt> as an Informational RFC

This document has been reviewed in the IETF but is not the product of an
IETF Working Group.

The IESG contact person is Tim Polk.

A URL of this Internet Draft is:

Technical Summary

This is a profile of RFC 5272-5274 (Certificate Management over CMS)
that is specific to the United States National Security Agency's Suite
B Cryptography specification. In essence, it profiles RFC 5272-5274 to
meet the Suite B requirements.

Working Group Summary

The document was announced on the PKIX WG mailing list, and some
off-list comments were sent to the document authors. There was also a
short presentation on the document at IETF 77. It was not appropriate
to discuss it in the WG itself.

Document Quality

It is expected that this document will be widely adopted by vendors
for the organization that wrote this profile. Most if not all of the
algorithms specified in this profile are already in at least one
popular open-source package.


   Sean Turner is the Document Shepherd; Tim Polk is the 
   Responsible Area Director.

RFC Editor Note

(1) In section 5.1., paragraph 1 sentence 1

s/if they are not, the CA MUST reject those/if they are not, the RA MUST reject those/

In section 6.1., paragraph 3

   When processing end-entity generated SignedData objects, RAs MUST NOT 
   When processing end-entity generated SignedData objects, CAs MUST NOT