Technical Summary
RFC5280 specifies several extended key purpose identifiers
(KeyPurposeIds) for X.509 certificates. This document defines a
general purpose document signing KeyPurposeId for inclusion in the
Extended Key Usage (EKU) extension of X.509 public key certificates.
Document Signing applications may require that the EKU extension be
present and that a document signing KeyPurposeId be indicated in
order for the certificate to be acceptable to that Document Signing
application.
Working Group Summary
There is broad support for this document in the LAMPS WG.
During document adoption, a few peoples against the key idea, but no objections have been raised in the last year or during WGLC.
Document Quality
Several Certification Authorities (CAs) have expressed an intention to support this new extended key usage value.
This document makes use of ASN.1. The document shepherd compiled the ASN.1 module after inserting placeholder values for the ones that need to be assigned by IANA. It compiles without errors.
Personnel
* Document Shepherd: Russ Housley
* Responsible Area Director: Roman Danyliw