Internet X.509 Public Key Infrastructure: Additional Algorithms and Identifiers for DSA and ECDSA
RFC 5758, “Internet X.509 Public Key Infrastructure: Additional Algorithms and Identifiers for DSA and ECDSA”, is a Proposed Standard document published in January 2010 by Q. Dang, S. Santesson, K. Moriarty, D. Brown, T. Polk. It updates RFC 3279. The canonical text is published by the RFC Editor.
Abstract
This document updates RFC 3279 to specify algorithm identifiers and ASN.1 encoding rules for the Digital Signature Algorithm (DSA) and Elliptic Curve Digital Signature Algorithm (ECDSA) digital signatures when using SHA-224, SHA-256, SHA-384, or SHA-512 as the hashing algorithm. This specification applies to the Internet X.509 Public Key infrastructure (PKI) when digital signatures are used to sign certificates and certificate revocation lists (CRLs). This document also identifies all four SHA2 hash algorithms for use in the Internet X.509 PKI. [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 5758 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 5757 Multicast Mobility in Mobile IP Version 6 : Problem Statement and Brief Survey
- RFC 5759 Suite B Certificate and Certificate Revocation List Profile
- RFC 5756 Updates for RSAES-OAEP and RSASSA-PSS Algorithm Parameters
- RFC 5760 RTP Control Protocol Extensions for Single-Source Multicast Sessions with Unicast Feedback
- RFC 5755 An Internet Attribute Certificate Profile for Authorization
- RFC 5761 Multiplexing RTP Data and Control Packets on a Single Port
- RFC 5754 Using SHA2 Algorithms with Cryptographic Message Syntax
- RFC 5762 RTP and the Datagram Congestion Control Protocol