Suite B Profile of Certificate Management over CMS
RFC 6403

Note: This ballot was opened for revision 03 and is now closed.

(Tim Polk) Yes

(Ron Bonica) No Objection

(Stewart Bryant) No Objection

(Lars Eggert) No Objection

(Adrian Farrel) No Objection

(Russ Housley) No Objection

Alexey Melnikov No Objection

Comment (2010-08-15)
No email
send info
5.1. RA Processing of Requests 

   RAs conforming to this document MUST ensure that only the permitted 
   signature, hash, and MAC algorithms described throughout this profile 
   are used in requests; if they are not, the CA MUST reject those 

s/CA/RA ?

   requests.  The RA SHOULD return a CMCFailInfo with the value of 
   badAlg [RFC5272]. 

6.1. CA Processing of PKI Requests 

   When processing end-entity generated SignedData objects, RAs MUST NOT 

s/RAs/CAs ?

   perform Cryptographic Message Syntax (CMS) Content Constraints (CCC) 
   certificate extension [CCC] processing.

(Robert Sparks) No Objection

(Sean Turner) Recuse