Information on RFC 6211 » RFC Editor (original) (raw)

File formats:

icon for text file icon for PDF icon for HTML

Status:

PROPOSED STANDARD

Author:

J. Schaad

Stream:

IETF

Source:

NON WORKING GROUP

Cite this RFC: TXT | XML | BibTeX

DOI: https://doi.org/10.17487/RFC6211

Discuss this RFC: Send questions or comments to the mailing list iesg@ietf.org

Other actions: Submit Errata | Find IPR Disclosures from the IETF | View History of RFC 6211

Abstract

The Cryptographic Message Syntax (CMS), unlike X.509/PKIX certificates, is vulnerable to algorithm substitution attacks. In an algorithm substitution attack, the attacker changes either the algorithm being used or the parameters of the algorithm in order to change the result of a signature verification process. In X.509 certificates, the signature algorithm is protected because it is duplicated in the TBSCertificate.signature field with the proviso that the validator is to compare both fields as part of the signature validation process. This document defines a new attribute that contains a copy of the relevant algorithm identifiers so that they are protected by the signature or authentication process. [STANDARDS-TRACK]

For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.