[lamps] Protocol Action: 'Certificate Management Protocol (CMP) Updates' to Proposed Standard (draft-ietf-lamps-cmp-updates-23.txt)
The IESG <iesg-secretary@ietf.org> Wed, 20 July 2022 16:21 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: spasm@ietf.org
Delivered-To: spasm@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 4487BC15A735; Wed, 20 Jul 2022 09:21:28 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 8.8.0
Auto-Submitted: auto-generated
Precedence: bulk
Cc: The IESG <iesg@ietf.org>, draft-ietf-lamps-cmp-updates@ietf.org, housley@vigilsec.com, lamps-chairs@ietf.org, rdd@cert.org, rfc-editor@rfc-editor.org, spasm@ietf.org
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <165833408827.26727.17063311960743286589@ietfa.amsl.com>
Date: Wed, 20 Jul 2022 09:21:28 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/URZppvUDBlojE2Cg09u4zyFWnrc>
Subject: [lamps] Protocol Action: 'Certificate Management Protocol (CMP) Updates' to Proposed Standard (draft-ietf-lamps-cmp-updates-23.txt)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jul 2022 16:21:28 -0000
The IESG has approved the following document: - 'Certificate Management Protocol (CMP) Updates' (draft-ietf-lamps-cmp-updates-23.txt) as Proposed Standard This document is the product of the Limited Additional Mechanisms for PKIX and SMIME Working Group. The IESG contact persons are Paul Wouters and Roman Danyliw. A URL of this Internet Draft is: https://datatracker.ietf.org/doc/draft-ietf-lamps-cmp-updates/ Technical Summary This document contains a set of updates to the syntax and transfer of Certificate Management Protocol (CMP) version 2. This document updates RFC 4210, RFC 5912, and RFC 6712. The aspects of CMP updated in this document are using EnvelopedData instead of EncryptedValue, clarifying the handling of p10cr messages, improving the crypto agility, as well as adding new general message types, extended key usages to identify certificates for use with CMP, and well-known URI path segments. To properly differentiate the support of EnvelopedData instead of EncryptedValue, the CMP version 3 is introduced in case a transaction is supposed to use EnvelopedData. CMP version 3 is introduced to enable signaling support of EnvelopedData instead of EncryptedValue and signaling the use of an explicit hash AlgorithmIdentifier in certConf messages, as far as needed. Working Group Summary There is consensus for this document in the LAMPS WG. The scope of the changes made in the document was larger than was originally anticipated. The "well-known" mechanism was refined after expert review. Document Quality Vendors with CMP implementations have indicated that they intend to support the updated syntax, and at least one open source effort is underway. Personnel Russ Housley is the document shepherd. Roman Danyliw is the responsible area director.