Browse Prior Art Database

Internet X.509 Public Key Infrastructure Operational Protocols: FTP and HTTP (RFC2585)

IP.com Disclosure Number: IPCOM000003172D
Original Publication Date: 1999-May-01
Included in the Prior Art Database: 2000-Sep-13
Document File: 6 page(s) / 14K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

R. Housley: AUTHOR [+2]

Abstract

The protocol conventions described in this document satisfy some of the operational requirements of the Internet Public Key Infrastructure (PKI). This document specifies the conventions for using the File Transfer Protocol (FTP) and the Hypertext Transfer Protocol (HTTP) to obtain certificates and certificate revocation lists (CRLs) from PKI repositories. Additional mechanisms addressing PKIX operational requirements are specified in separate documents.

This text was extracted from a ASCII document.
This is the abbreviated version, containing approximately 20% of the total text.

Network Working Group R. Housley

Request for Comments: 2585 SPYRUS

Category: Standards Track P. Hoffman

IMC

May 1999

Internet X.509 Public Key Infrastructure

Operational Protocols: FTP and HTTP

Status of this Memo

This document specifies an Internet standards track protocol for the

Internet community, and requests discussion and suggestions for

improvements. Please refer to the current edition of the "Internet

Official Protocol Standards" (STD 1) for the standardization state

and status of this protocol. Distribution of this memo is unlimited.

Copyright Notice

Copyright (C) The Internet Society (1999). All Rights Reserved.

Abstract

The protocol conventions described in this document satisfy some of

the operational requirements of the Internet Public Key

Infrastructure (PKI). This document specifies the conventions for

using the File Transfer Protocol (FTP) and the Hypertext Transfer

Protocol (HTTP) to obtain certificates and certificate revocation

lists (CRLs) from PKI repositories. Additional mechanisms addressing

PKIX operational requirements are specified in separate documents.

1 Introduction

This specification is part of a multi-part standard for the Internet

Public Key Infrastructure (PKI) using X.509 certificates and

certificate revocation lists (CRLs). This document specifies the

conventions for using the File Transfer Protocol (FTP) and the

Hypertext Transfer Protocol (HTTP) to obtain certificates and CRLs

from PKI repositories. Additional mechanisms addressing PKI

repository access are specified in separate documents.

1.1. Model

The following is a simplified view of the architectural model assumed

by the Internet PKI specifications.

+---+

| C | +------------+

| e | <-------------------->| End entity |

| r | Operational +------------+

| t | transactions ^

| | and management | Management

| / | transactions | transactions

| | | PKI users

| C | v

| R | -------------------+--+-----------+-----------------

| L | ^ ^

| | | | PKI management

| | v ...