|
URL: http://www.ietf.org/rfc/rfc2459.txt
This
memo profiles the X.509 v3 certificate and X.509 v2 CRL for use in the
Internet. An overview of the approach and model are provided as an
introduction. The X.509 v3 certificate format is described in detail, with
additional information regarding the format and semantics of Internet name
forms (e.g., IP addresses). Standard certificate extensions are described and
one new Internet-specific extension is defined. A required set of certificate
extensions is specified. The X.509 v2 CRL format is described and a required
extension set is defined as well. An algorithm for X.509 certificate path
validation is described. Supplemental information is provided describing the
format of public keys and digital signatures in X.509 certificates for common
Internet public key encryption algorithms (i.e., RSA, DSA, and Diffie-Hellman).
ASN.1 modules and examples are provided in the appendices.
Keywords:
|
