Technical Summary
This document defines an extension to certificates according to
[RFC5280]. The extension defined in this document holds data about
how the certificate subject was authenticated by the Certification
Authority who issued the certificate where this extension appears.
This document also defines one data structure for inclusion in this
extension that designed to hold information when the subject is
authenticated using a SAML assertion [SAML].
Working Group Summary
This is an individual draft submission. It is however standards
track as there are a number of implementations.
Document Quality
There are a number of working implementations, limited to
a single market. The draft has received adequate review from
other experts in PKI and SAML.
The document has been reviewed by the implementors of the Swedish
eID (government to citizen identity services) signing service. There
are currently at least 3 fully interoperable implementations
suggesting the specification has been well reviewed.
An ASN.1 Syntax verification is requested by the document shepherd.
A few minor idnits will be addressed when the submission window re-opens.
Personnel
Shepherd: Leif Johansson <leifj@sunet.se>
Responsible Area Director: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>