Browse Prior Art Database

PKCS #10: Certification Request Syntax Specification Version 1.7 (RFC2986)

IP.com Disclosure Number: IPCOM000005179D
Original Publication Date: 2000-Nov-01
Included in the Prior Art Database: 2001-Aug-16
Document File: 15 page(s) / 28K

Publishing Venue

Internet Society Requests For Comment (RFCs)

Related People

M. Nystrom: AUTHOR [+2]

Abstract

This memo represents a republication of PKCS #10 v1.7 from RSA Laboratories' Public-Key Cryptography Standards (PKCS) series, and change control is retained within the PKCS process. The body of this document, except for the security considerations section, is taken directly from the PKCS #9 v2.0 or the PKCS #10 v1.7 document.

This text was extracted from a ASCII Text document.
This is the abbreviated version, containing approximately 13% of the total text.

Network Working Group M. Nystrom Request for Comments: 2986 B. Kaliski Obsoletes: 2314 RSA Security Category: Informational November 2000

PKCS #10: Certification Request Syntax Specification

Version 1.7

Status of this Memo

This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited.

Copyright Notice

Copyright (C) The Internet Society (2000). All Rights Reserved.

Abstract

This memo represents a republication of PKCS #10 v1.7 from RSA Laboratories' Public-Key Cryptography Standards (PKCS) series, and change control is retained within the PKCS process. The body of this document, except for the security considerations section, is taken directly from the PKCS #9 v2.0 or the PKCS #10 v1.7 document.

This memo describes a syntax for certification requests.

Table of Contents

1. Introduction ................................................. 2 2. Definitions and notation ..................................... 2 2.1 Definitions ................................................. 2 2.2 Notation .................................................... 4 3. Overview ..................................................... 4 4. Certification request syntax ................................. 5 4.1 CertificationRequestInfo .................................... 5 4.2 CertificationRequest ........................................ 7 5. Security Considerations ...................................... 8 6. Authors' Addresses ........................................... 8 A. ASN.1 module ................................................. 9 B. Intellectual property considerations ........................ 10 C. Revision history ............................................ 10 D. References .................................................. 11 E. Contact information About PKCS ............................ 12 Full Copyright Statement ........................................ 14

Nystrom Kaliski Informational [Page 1]

RFC 2986 Certification Request Syntax Specification November 2000

1. Introduction

This document describes syntax for certification requests. A certification request consists of a distinguished name, a public key, and optionally a set of attributes, collectively signed by the entity requesting certification. Certification requests are sent to a certification authority, which transforms the request into an X.509 [9] public-key certificate. (In what form the certification authority returns the newly signed certificate is outside the scope of this document. A PKCS #7 [2] message is one possibility.)

The intention of including a set of attributes is twofold: to provide other information about a given entity , or a "challenge password" by which the entity may later request certificate revocation; and to provide attributes for inclusion in X.509 certificates. A non- exhaustive list of attributes is given in PKCS #9 [3].

Certification authorities may also require non-electronic forms of request and may return non-e...