P6R's Secure Shell Public Key Subsystem
RFC 7076

Revision differences

Document history

Date Rev. By Action
2018-12-20
 04 (System)
Received changes through RFC Editor sync (changed abstract to 'The Secure Shell (SSH) Public Key Subsystem protocol defines a key distribution protocol that is limited …
Received changes through RFC Editor sync (changed abstract to 'The Secure Shell (SSH) Public Key Subsystem protocol defines a key distribution protocol that is limited to provisioning an SSH server with a user's public keys. This document describes a new protocol that builds on the protocol defined in RFC 4819 to allow the provisioning of keys and certificates to a server using the SSH transport.

The new protocol allows the calling client to organize keys and certificates in different namespaces on a server. These namespaces can be used by the server to allow a client to configure any application running on the server (e.g., SSH, Key Management Interoperability Protocol (KMIP), Simple Network Management Protocol (SNMP)).

The new protocol provides a server-independent mechanism for clients to add public keys, remove public keys, add certificates, remove certificates, and list the current set of keys and certificates known by the server by namespace (e.g., list all public keys in the SSH namespace).

Rights to manage keys and certificates in a particular namespace are specific and limited to the authorized user and are defined as part of the server's implementation. The described protocol is backward compatible to version 2 defined by RFC 4819.')
2013-11-22
 04 (System) RFC published
2013-11-20
 04 (System) RFC Editor state changed to AUTH48-DONE from AUTH48
2013-11-18
 04 (System) RFC Editor state changed to AUTH48 from RFC-EDITOR
2013-10-31
 04 (System) RFC Editor state changed to RFC-EDITOR from EDIT
2013-10-08
 04 (System) IANA Action state changed to No IC from In Progress
2013-10-08
 04 (System) IANA Action state changed to In Progress
2013-10-08
 04 (System) RFC Editor state changed to EDIT
2013-10-07
 04 Nevil Brownlee ISE state changed to Sent to the RFC Editor
2013-10-07
 03 Nevil Brownlee Sent request for publication to the RFC Editor
2013-09-30
 03 (System) Sub state has been changed to AD Followup from Revised ID Needed
2013-09-30
 04 Mark Joseph New version available: draft-joseph-pkix-p6rsshextension-04.txt
2013-09-30
 03 Nevil Brownlee ISE state changed to In ISE Review from In IESG Review
2013-09-30
 03 Nevil Brownlee Annotation tags IESG Review Completed, Revised I-D Needed set.
2013-08-26
 03 Amy Vezza IETF conflict review initiated - see conflict-review-joseph-pkix-p6rsshextension
2013-08-26
 03 Amy Vezza Intended Status changed to Informational from None
2013-08-25
 03 Nevil Brownlee ISE state changed to In IESG Review from In ISE Review
2013-06-23
 03 Mark Joseph New version available: draft-joseph-pkix-p6rsshextension-03.txt
2013-06-18
 02 Nevil Brownlee ISE state changed to In ISE Review from Response to Review Needed
2013-06-14
 02 (System) Sub state has been changed to AD Followup from Revised ID Needed
2013-06-14
 02 Mark Joseph New version available: draft-joseph-pkix-p6rsshextension-02.txt
2013-06-11
 01 Nevil Brownlee ISE state changed to Response to Review Needed from In ISE Review
2013-06-11
 01 Nevil Brownlee Annotation tag Revised I-D Needed set. Annotation tag Awaiting Reviews cleared.
2013-06-04
 01 Nevil Brownlee ISE state changed to In ISE Review from None
2013-06-04
 01 Nevil Brownlee Annotation tag Awaiting Reviews set.
2013-05-31
 01 Amy Vezza Changed field(s): review_by_rfc_editor,abstract
2013-05-31
 01 Amy Vezza Stream changed to ISE from None
2013-05-30
 01 Mark Joseph New version available: draft-joseph-pkix-p6rsshextension-01.txt
2013-05-27
 00 Mark Joseph New version available: draft-joseph-pkix-p6rsshextension-00.txt