Cryptographic Message Syntax Algorithm Identifier Protection Attribute
RFC 6211, “Cryptographic Message Syntax Algorithm Identifier Protection Attribute”, is a Proposed Standard document published in April 2011 by J. Schaad. The canonical text is published by the RFC Editor.
Abstract
The Cryptographic Message Syntax (CMS), unlike X.509/PKIX certificates, is vulnerable to algorithm substitution attacks. In an algorithm substitution attack, the attacker changes either the algorithm being used or the parameters of the algorithm in order to change the result of a signature verification process. In X.509 certificates, the signature algorithm is protected because it is duplicated in the TBSCertificate.signature field with the proviso that the validator is to compare both fields as part of the signature validation process. This document defines a new attribute that contains a copy of the relevant algorithm identifiers so that they are protected by the signature or authentication process. [STANDARDS-TRACK]
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 6211 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 6210 Experiment: Hash Functions with Parameters in the Cryptographic Message Syntax and S/MIME
- RFC 6212 Authentication-Results Registration for Vouch by Reference Results
- RFC 6209 Addition of the ARIA Cipher Suites to Transport Layer Security
- RFC 6213 IS-IS BFD-Enabled TLV
- RFC 6208 Cloud Data Management Interface Media Types
- RFC 6214 Adaptation of RFC 1149 for IPv6
- RFC 6207 The Media Types application/mods+xml, application/mads+xml, application/mets+xml, application/marcxml+xml, and application/sru+xml
- RFC 6215 MPLS Transport Profile User-to-Network and Network-to-Network Interfaces