Protocol Action: 'Cryptographic Message Syntax (CMS) Content Constraints Extension' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Wed, 26 May 2010 15:30 UTC
Return-Path: <wwwrun@core3.amsl.com>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@core3.amsl.com
Received: by core3.amsl.com (Postfix, from userid 30) id 0420D3A691A; Wed, 26 May 2010 08:30:34 -0700 (PDT)
X-idtracker: yes
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'Cryptographic Message Syntax (CMS) Content Constraints Extension' to Proposed Standard
Message-Id: <20100526153035.0420D3A691A@core3.amsl.com>
Date: Wed, 26 May 2010 08:30:34 -0700
Cc: Internet Architecture Board <iab@iab.org>, RFC Editor <rfc-editor@rfc-editor.org>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-announce>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 May 2010 15:30:35 -0000
The IESG has approved the following document: - 'Cryptographic Message Syntax (CMS) Content Constraints Extension ' <draft-housley-cms-content-constraints-extn-06.txt> as a Proposed Standard This document has been reviewed in the IETF but is not the product of an IETF Working Group. The IESG contact person is Tim Polk. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-housley-cms-content-constraints-extn-06.txt Technical Summary This document specifies the syntax and semantics for the Cryptographic Message Syntax (CMS) content constraints extension. This extension is used to determine whether a public key is appropriate to use in the processing of a protected content. In particular, the CMS content constraints extension is one part of the authorization decision; it is used when validating a digital signature on a CMS SignedData content or validating a message authentication code (MAC) on a CMS AuthenticatedData content or CMS AuthEnvelopedData content. The signed or authenticated content type is identified by an ASN.1 object identifier, and this extension indicates the content types that the public key is authorized to validate. If the authorization check is successful, the CMS content constraints extension also provides default values for absent attributes. Working Group Summary This document is an individual submission. It provides an authorization mechanism for use with the Trust Anchor Management Protocol (TAMP). Document Quality The document is detailed and clear. It has been implemented as part of a not-yet-released open source library. Personnel Geoff Beier is the Document Shepherd for this document. Tim Polk is the Responsible Area Director.