Clearance Attribute and Authority Clearance Constraints Certificate Extension
RFC 5913, “Clearance Attribute and Authority Clearance Constraints Certificate Extension”, is a Proposed Standard document published in June 2010 by S. Turner, S. Chokhani. The canonical text is published by the RFC Editor.
Abstract
This document defines the syntax and semantics for the Clearance attribute and the Authority Clearance Constraints extension in X.509 certificates. The Clearance attribute is used to indicate the clearance held by the subject. The Clearance attribute may appear in the subject directory attributes extension of a public key certificate or in the attributes field of an attribute certificate. The Authority Clearance Constraints certificate extension values in a Trust Anchor (TA), in Certification Authority (CA) public key certificates, and in an Attribute Authority (AA) public key certificate in a certification path for a given subject constrain the effective Clearance of the subject. [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 5913 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 5912 New ASN.1 Modules for the Public Key Infrastructure Using X.509
- RFC 5914 Trust Anchor Format
- RFC 5911 New ASN.1 Modules for Cryptographic Message Syntax and S/MIME
- RFC 5915 Elliptic Curve Private Key Structure
- RFC 5910 Domain Name System Security Extensions Mapping for the Extensible Provisioning Protocol
- RFC 5916 Device Owner Attribute
- RFC 5909 Securing Neighbor Discovery Proxy: Problem Statement
- RFC 5917 Clearance Sponsor Attribute