[rfc-dist] RFC 9152 on Secure Object Delivery Protocol (SODP) Server Interfaces: NSA's Profile for Delivery of Certificates, Certificate Revocation Lists (CRLs), and Symmetric Keys to Clients

rfc-editor@rfc-editor.org Tue, 26 April 2022 22:49 UTC

Return-Path: <rfc-dist-bounces@rfc-editor.org>
X-Original-To: ietfarch-rfc-dist-archive@ietfa.amsl.com
Delivered-To: ietfarch-rfc-dist-archive@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B8A4C220F79; Tue, 26 Apr 2022 15:49:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1651013380; bh=LXAc7tHTz4ma5kfkRZy+v77pX6k28+Apoi2h3CfKnIk=; h=To:From:Cc:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=pUtKNN5qEz9eRkPXLe6YTeeE4YFZODqVNxwzu2y26fAK5LhLFS0V8Zz4a0AvsAabK /qDgelaofRbcMsnJAacWSTTUgJDrp+iJgUcuCDCe7f1ZZT/ZXBtr4yKB+T+R7k+kao 9r3rRiQcHhUDZp1xXF3dW8Io0Yp4+QMbsB01Oxwo=
X-Mailbox-Line: From rfc-dist-bounces@rfc-editor.org Tue Apr 26 15:49:39 2022
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id C26D8C22E0A3; Tue, 26 Apr 2022 15:49:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1651013379; bh=LXAc7tHTz4ma5kfkRZy+v77pX6k28+Apoi2h3CfKnIk=; h=To:From:Cc:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=h1jbD9DCLVPRKQZlUqv0SB10EAg77UwTLIL9GslYM9QdloLl+Tt9/lARsjcFfteoi hEhM2HdcO2ufk6dd3HrVAawNh5M+zXBK29YMpAILuPPRThT6TGkNTjNhVa0z2G+slV gza7Cn0ZUIRonINB+NOaiRmmoo4tVZS1bGxm7uCA=
X-Original-To: rfc-dist@ietfa.amsl.com
Delivered-To: rfc-dist@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A7839C15E3EA; Tue, 26 Apr 2022 15:49:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.649
X-Spam-Level:
X-Spam-Status: No, score=-1.649 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.248, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qY2rmIkdvOiI; Tue, 26 Apr 2022 15:49:29 -0700 (PDT)
Received: from rfcpa.amsl.com (rfc-editor.org [50.223.129.200]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7830CC1345F0; Tue, 26 Apr 2022 15:48:36 -0700 (PDT)
Received: by rfcpa.amsl.com (Postfix, from userid 499) id 51E521E656; Tue, 26 Apr 2022 15:48:36 -0700 (PDT)
To: ietf-announce@ietf.org, rfc-dist@rfc-editor.org
From: rfc-editor@rfc-editor.org
Cc: rfc-editor@rfc-editor.org, drafts-update-ref@iana.org
Message-Id: <20220426224836.51E521E656@rfcpa.amsl.com>
Date: Tue, 26 Apr 2022 15:48:36 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/rfc-dist/-vKOoRw5GbRHlWH77Z3h4Of2EPM>
Subject: [rfc-dist] RFC 9152 on Secure Object Delivery Protocol (SODP) Server Interfaces: NSA's Profile for Delivery of Certificates, Certificate Revocation Lists (CRLs), and Symmetric Keys to Clients
X-BeenThere: rfc-dist@rfc-editor.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: RFC Announcements <rfc-dist.rfc-editor.org>
List-Unsubscribe: <https://mailman.rfc-editor.org/mailman/options/rfc-dist>, <mailto:rfc-dist-request@rfc-editor.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rfc-dist/>
List-Post: <mailto:rfc-dist@rfc-editor.org>
List-Help: <mailto:rfc-dist-request@rfc-editor.org?subject=help>
List-Subscribe: <https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist>, <mailto:rfc-dist-request@rfc-editor.org?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: rfc-dist-bounces@rfc-editor.org
Sender: rfc-dist <rfc-dist-bounces@rfc-editor.org>

A new Request for Comments is now available in online RFC libraries.

        
        RFC 9152

        Title:      Secure Object Delivery Protocol (SODP) 
                    Server Interfaces: NSA's Profile for Delivery 
                    of Certificates, Certificate Revocation Lists (CRLs), 
                    and Symmetric Keys to Clients 
        Author:     M. Jenkins,
                    S. Turner
        Status:     Informational
        Stream:     Independent
        Date:       April 2022
        Mailbox:    mjjenki@cyber.nsa.gov,
                    sean@sn3rd.com
        Pages:      18
        Updates/Obsoletes/SeeAlso:   None

        I-D Tag:    draft-turner-sodp-profile-08.txt

        URL:        https://www.rfc-editor.org/info/rfc9152

        DOI:        10.17487/RFC9152

This document specifies protocol interfaces profiled by the United
States National Security Agency (NSA) for National Security System
(NSS) servers that provide public key certificates, Certificate
Revocation Lists (CRLs), and symmetric keys to NSS clients. Servers
that support these interfaces are referred to as Secure Object
Delivery Protocol (SODP) servers. The intended audience for this
profile comprises developers of client devices that will obtain key
management services from NSA-operated SODP servers.  Interfaces
supported by SODP servers include Enrollment over Secure Transport
(EST) and its extensions as well as Certificate Management over CMS
(CMC).

This profile applies to the capabilities, configuration, and
operation of all components of US National Security Systems (SP
800-59). It is also appropriate for other US Government systems that
process high-value information. It is made publicly available for use
by developers and operators of these and any other system
deployments.


INFORMATIONAL: This memo provides information for the Internet community.
It does not specify an Internet standard of any kind. Distribution of
this memo is unlimited.

This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see
  https://www.ietf.org/mailman/listinfo/ietf-announce
  https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist

For searching the RFC series, see https://www.rfc-editor.org/search
For downloading RFCs, see https://www.rfc-editor.org/retrieve/bulk

Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-editor@rfc-editor.org.  Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.


The RFC Editor Team
Association Management Solutions, LLC


_______________________________________________
rfc-dist mailing list
rfc-dist@rfc-editor.org
https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist
http://www.rfc-editor.org