I want to provide a bit of background on this new Internet Draft.
The S/MIME Working Group is developing standards that are derived from PKCS
documents. The first such document is CMS, which is derived from PKCS#7.
Since our working group is associated with the standardization of PKCS
documents, we are also considering a derivative of PKCS#10 as a standard.
The CRS document is the first draft.
At the meeting in Washington, DC, I will ask the attendees whether we
should expand the Charter to cover this work.
Subject: I-D ACTION:draft-ietf-smime-crs-00.txt
Date: Mon, 1 Dec 1997 06:35:00 -0800
A New Internet-Draft is available from the on-line Internet-Drafts
This draft is a work item of the S/MIME Mail Security Working Group of
Title : Certificate Request Syntax
Author(s) : H. Prafullchandra, B. Fox, X. Liu,
M. Myers, J. Weinstein
Filename : draft-ietf-smime-crs-00.txt
Pages : 19
Date : 26-Nov-97
This document defines an Internet PKI Certificate Request Syntax (CRS).
It addresses a growing need within the Internet PKI community for an
interface to public key certification products and services based on
PKCS7 [PKCS7] and PKCS10 [PKCS10]. A small number of additional services
are defined to supplement the core certificate request service. Current
industry practice regarding the use of PKCS7 and PKCS10 is also
documented for the benefit of the Internet community.
In general, the use of PKCS7 in this document is aligned to the
Cryptographic Message Syntax [CMS] which provides a superset of the
PKCS7 syntax. Throughout this document, the term CMS should be taken to
include the PKCS #7 document as defined in [PKCS7]. The term CRS refers
to this specification.
The chief differences between CRS and PKIXMGMT are:
- Use of PKCS7 for security encapsulation and transaction framework
- Use of PKCS10 as the certification request message content
- Certification of Diffie-Hellman Public Keys based on PKCS10 requests
- No assumption of reliable connectivity or persistent on-line operation
- Single request/response transaction model
Internet-Drafts are available by anonymous FTP. Login with the username
"anonymous" and a password of your e-mail address. After logging in,
type "cd internet-drafts" and then
A URL for the Internet-Draft is:
Internet-Drafts directories are located at:
Pacific Rim: munnari.oz.au
US East Coast: ds.internic.net
US West Coast: ftp.isi.edu
Internet-Drafts are also available by mail.
Send a message to: mailserv(_at_)ds(_dot_)internic(_dot_)net(_dot_) In
the body type:
NOTE: The mail server at ds.internic.net can return the document in
MIME-encoded form by using the "mpack" utility. To use this
feature, insert the command "ENCODING mime" before the "FILE"
command. To decode the response(s), you will need "munpack" or
a MIME-compliant mail reader. Different MIME-compliant mail readers
exhibit different behavior, especially when dealing with
"multipart" MIME messages (i.e. documents which have been split
up into multiple messages), so check your local documentation on
how to manipulate these messages.