Technical Summary
This document defines a new CSR attribute, relatedCertRequest, and a
new X.509 certificate extension, RelatedCertificate. The use of the
relatedCertRequest attribute in a CSR and the inclusion of the
RelatedCertificate extension in the resulting certificate together
provide additional assurance that two certificates each belong to the
same end entity. This mechanism is particularly useful in the
context of non-composite hybrid authentication, which enables users
to employ the same certificates in hybrid authentication as in
authentication done with only traditional or post-quantum algorithms.
Working Group Summary
This document was broadly agreed to and uncontroversial.
Document Quality
Implementations have been reported in the US Government.
Personnel
The Document Shepherd for this document is Tim Hollebeek. The
Responsible Area Director is Roman Danyliw.