%% You should probably cite rfc4108 instead of this I-D. @techreport{housley-cms-fw-wrap-11, number = {draft-housley-cms-fw-wrap-11}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-housley-cms-fw-wrap/11/}, author = {Russ Housley}, title = {{Using Cryptographic Message Syntax (CMS) to Protect Firmware Packages}}, pagetotal = 61, year = 2005, month = jan, day = 25, abstract = {This document describes the use of the Cryptographic Message Syntax (CMS) to protect firmware packages, which provide object code for one or more hardware module components. CMS is specified in RFC 3852. A digital signature is used to protect the firmware package from undetected modification and to provide data origin authentication. Encryption is optionally used to protect the firmware package from disclosure, and compression is optionally used to reduce the size of the protected firmware package. A firmware package loading receipt can optionally be generated to acknowledge the successful loading of a firmware package. Similarly, a firmware package load error report can optionally be generated to convey the failure to load a firmware package. {[}STANDARDS-TRACK{]}}, }