RFC 8603 on Commercial National Security Algorithm (CNSA) Suite Certificate and Certificate Revocation List (CRL) Profile

rfc-editor@rfc-editor.org Thu, 16 May 2019 03:04 UTC

Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: ietf-announce@ietfa.amsl.com
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id EC3A31202E9 for <ietf-announce@ietfa.amsl.com>; Wed, 15 May 2019 20:04:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id fFMk4zXzFBs8 for <ietf-announce@ietfa.amsl.com>; Wed, 15 May 2019 20:04:33 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88681120253 for <ietf-announce@ietf.org>; Wed, 15 May 2019 20:04:33 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id D282AB82B15; Wed, 15 May 2019 20:04:19 -0700 (PDT)
To: ietf-announce@ietf.org, rfc-dist@rfc-editor.org
Subject: =?UTF-8?B?UkZDIDg2MDMgb24gQ29tbWVyY2lhbCBOYXRpb25hbCBTZWN1cml0eSBBbGdvcml0aG0gKENOU0EpIFN1aXRlIENlcnRpZmljYXRlIGFuZCBDZXJ0aWZpY2F0ZSBSZXZvY2F0aW9uIExpc3QgKENSTCkgUHJvZmlsZQ==?=
X-PHP-Originating-Script: 1005:ams_util_lib.php
From: rfc-editor@rfc-editor.org
Cc: rfc-editor@rfc-editor.org, drafts-update-ref@iana.org
Content-type: text/plain; charset=UTF-8
Message-Id: <20190516030419.D282AB82B15@rfc-editor.org>
Date: Wed, 15 May 2019 20:04:19 -0700 (PDT)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/lcRAIej8BvywqBX1vuk2h8ecsEI>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 May 2019 03:04:41 -0000

A new Request for Comments is now available in online RFC libraries.

        RFC 8603

        Title:      Commercial National Security Algorithm (CNSA) 
                    Suite Certificate and Certificate Revocation List 
                    (CRL) Profile 
        Author:     M. Jenkins,
                    L. Zieglar
        Status:     Informational
        Stream:     Independent
        Date:       May 2019
        Mailbox:    mjjenki@nsa.gov, 
        Pages:      13
        Characters: 26271
        Updates/Obsoletes/SeeAlso:   None

        I-D Tag:    draft-jenkins-cnsa-cert-crl-profile-06.txt

        URL:        https://www.rfc-editor.org/info/rfc8603

        DOI:        10.17487/RFC8603

This document specifies a base profile for X.509 v3 Certificates and
X.509 v2 Certificate Revocation Lists (CRLs) for use with the United
States National Security Agency's Commercial National Security
Algorithm (CNSA) Suite.  The profile applies to the capabilities,
configuration, and operation of all components of US National
Security Systems that employ such X.509 certificates.  US National
Security Systems are described in NIST Special Publication 800-59.
It is also appropriate for all other US Government systems that
process high-value information.  It is made publicly available for
use by developers and operators of these and any other system

INFORMATIONAL: This memo provides information for the Internet community.
It does not specify an Internet standard of any kind. Distribution of
this memo is unlimited.

This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see

For searching the RFC series, see https://www.rfc-editor.org/search
For downloading RFCs, see https://www.rfc-editor.org/retrieve/bulk

Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-editor@rfc-editor.org.  Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.

The RFC Editor Team
Association Management Solutions, LLC