Lightweight Certificate Management Protocol Profile
RFC 9483, “Lightweight Certificate Management Protocol Profile”, is a Proposed Standard document published in November 2023 by H. Brockhaus, D. von Oheimb, S. Fries. The canonical text is published by the RFC Editor.
Abstract
This document aims at simple, interoperable, and automated PKI management operations covering typical use cases of industrial and Internet of Things (IoT) scenarios. This is achieved by profiling the Certificate Management Protocol (CMP), the related Certificate Request Message Format (CRMF), and transfer based on HTTP or Constrained Application Protocol (CoAP) in a succinct but sufficiently detailed and self-contained way. To make secure certificate management for simple scenarios and constrained devices as lightweight as possible, only the most crucial types of operations and options are specified as mandatory. More specialized or complex use cases are supported with optional features.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 9483 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9482 Constrained Application Protocol Transfer for the Certificate Management Protocol
- RFC 9484 Proxying IP in HTTP
- RFC 9481 Certificate Management Protocol Algorithms
- RFC 9485 I-Regexp: An Interoperable Regular Expression Format
- RFC 9480 Certificate Management Protocol Updates
- RFC 9486 IPv6 Options for In Situ Operations, Administration, and Maintenance
- RFC 9479 IS-IS Application-Specific Link Attributes
- RFC 9487 Export of Segment Routing over IPv6 Information in IP Flow Information Export