RFC 2634:Enhanced Security Services for S/MIME

RFC-Ref

Previous | Next

Frontpage | Contents | Keywords

Enhanced Security Services for S/MIME

1. Introduction

1.1. Triple Wrapping

1.1.1. Purpose of Triple Wrapping

1.1.2. Steps for Triple Wrapping

1.2. Format of a Triple Wrapped Message

1.3. Security Services and Triple Wrapping

1.3.1. Signed Receipts and Triple Wrapping

1.3.2. Security Labels and Triple Wrapping

1.3.3. Secure Mailing Lists and Triple Wrapping

1.3.4. Placement of Attributes

1.4. Required and Optional Attributes

1.5. Object Identifiers

2. Signed Receipts

2.1. Signed Receipt Concepts

2.2. Receipt Request Creation

2.2.1. Multiple Receipt Requests

2.2.2. Information Needed to Validate Signed Receipts

2.3. Receipt Request Processing

2.4. Signed Receipt Creation

2.4.1. MLExpansionHistory Attributes and Receipts

2.5. Determining the Recipients of the Signed Receipt

2.6. Signed Receipt Validation

2.7. Receipt Request Syntax

2.8. Receipt Syntax

2.9. Content Hints

2.10. Message Signature Digest Attribute

2.11. Signed Content Reference Attribute

3. Security Labels

3.1. Security Label Processing Rules

3.1.1. Adding Security Labels

3.1.2. Processing Security Labels

3.2. Syntax of eSSSecurityLabel

3.3. Security Label Components

3.3.1. Security Policy Identifier

3.3.2. Security Classification

3.3.3. Privacy Mark

3.3.4. Security Categories

3.4. Equivalent Security Labels

3.4.1. Creating Equivalent Labels

3.4.2. Processing Equivalent Labels

4. Mail List Management

4.1. Mail List Expansion

4.1.1. Detecting Mail List Expansion Loops

4.2. Mail List Agent Processing

4.2.1. Examples of Rule Processing

4.2.2. Processing Choices

4.2.2.1. Processing for EnvelopedData

4.2.2.2. Processing for SignedData

4.2.2.3. Processing for data

4.3. Mail List Expansion History Syntax

5. Signing Certificate Attribute

5.1. Attack Descriptions

5.1.1. Substitution Attack Description

5.1.2. Reissue of Certificate Description

5.1.3. Rogue Duplicate CA Description

5.2. Attack Responses

5.2.1. Substitution Attack Response

5.2.2. Reissue of Certificate Response

5.2.3. Rogue Duplicate CA Response

5.3. Related Signature Verification Context

5.3.1. Authorization Information

5.3.2. Policy Information

5.4. Signing Certificate Attribute Definition

5.4.1. Certificate Identification

6. Security Considerations

7. A. ASN.1 Module

8. B. References

9. C. Acknowledgments

10. Editor's Address

11. Full Copyright Statement

12. Acknowledgement

Previous | Next

Frontpage | Contents | Keywords

RFC-Ref.org

Sister Sites

Chess-Ref.org
Law-Ref.org
InChI.info
Zvon.org