The Certificate Management over CMS (CMC) is an
Internet Standard published by the
IETF, defining transport mechanisms for the
Cryptographic Message Syntax The Cryptographic Message Syntax (CMS) is the IETF's standard for cryptographically protected messages. It can be used by cryptographic schemes and protocols to digitally sign, digest, authenticate or encrypt any form of digital data.
CMS is b ...
(CMS). It is defined in , its transport mechanisms in .
Similarly to the
Certificate Management Protocol (CMP), it can be used for obtaining X.509
digital certificates in a
public key infrastructure
A public key infrastructure (PKI) is a set of roles, policies, hardware, software and procedures needed to create, manage, distribute, use, store and revoke digital certificates and manage public-key encryption. The purpose of a PKI is to facilit ...
(PKI).
CMS is one of two protocols utilizing the Certificate Request Message Format (CRMF), described in , with the other protocol being CMP.
The
Enrollment over Secure Transport (EST) protocol, described in {{IETF RFC, 7030, can be seen as a profile of CMC for use in provisioning certificates to end entities. As such, EST can play a similar role to
SCEP.
See also
*
Certificate Management Protocol (CMP)
*
Simple Certificate Enrollment Protocol (SCEP)
*
Enrollment over Secure Transport (EST)
*
Automated Certificate Management Environment
The Automatic Certificate Management Environment (ACME) protocol is a communications protocol for automating interactions between certificate authorities and their users' servers, allowing the automated deployment of public key infrastructure at ...
(ACME)
Public key infrastructure
Cryptographic protocols
Internet Standards
Internet protocols