Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework
RFC 3647, “Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework”, is an Informational document published in November 2003 by S. Chokhani, W. Ford, R. Sabett, C. Merrill, S. Wu. It obsoletes RFC 2527. The canonical text is published by the RFC Editor.
Abstract
This document presents a framework to assist the writers of certificate policies or certification practice statements for participants within public key infrastructures, such as certification authorities, policy authorities, and communities of interest that wish to rely on certificates. In particular, the framework provides a comprehensive list of topics that potentially (at the writer's discretion) need to be covered in a certificate policy or a certification practice statement. This document supersedes RFC 2527.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 3647 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 3646 DNS Configuration options for Dynamic Host Configuration Protocol for IPv6
- RFC 3648 Web Distributed Authoring and Versioning Ordered Collections Protocol
- RFC 3645 Generic Security Service Algorithm for Secret Key Transaction Authentication for DNS
- RFC 3649 HighSpeed TCP for Large Congestion Windows
- RFC 3644 Policy Quality of Service Information Model
- RFC 3650 Handle System Overview
- RFC 3643 Fibre Channel Frame Encapsulation
- RFC 3651 Handle System Namespace and Service Definition