<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.4.9) -->
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-ietf-lamps-one-signature-certs-02" category="std" consensus="true" submissionType="IETF" tocInclude="true" sortRefs="true" symRefs="true" version="3">
  <!-- xml2rfc v2v3 conversion 3.34.0 -->
  <front>
    <title abbrev="OSC">One Signature Certificates</title>
    <seriesInfo name="Internet-Draft" value="draft-ietf-lamps-one-signature-certs-02"/>
    <author initials="S." surname="Santesson" fullname="Stefan Santesson">
      <organization abbrev="IDsec Solutions">IDsec Solutions AB</organization>
      <address>
        <postal>
          <street>Forskningsbyn Ideon</street>
          <city>Lund</city>
          <code>223 70</code>
          <country>SE</country>
        </postal>
        <email>sts@aaa-sec.com</email>
      </address>
    </author>
    <author initials="R." surname="Housley" fullname="Russ Housley">
      <organization abbrev="Vigil Security">Vigil Security, LLC</organization>
      <address>
        <postal>
          <city>Herndon, VA</city>
          <country>US</country>
        </postal>
        <email>housley@vigilsec.com</email>
      </address>
    </author>
    <date year="2026" month="July" day="01"/>
    <workgroup>LAMPS</workgroup>
    <keyword>certificate</keyword>
    <keyword>signature</keyword>
    <keyword>X.509</keyword>
    <abstract>
      <?line 120?>

<t>This document defines the signedDocumentBinding certificate extension, which binds a certificate to the signed content of a digital signature produced by a single signing operation. Each certificate is created at the time of signing and the associated signing key is generated, used to produce a single digital signature, and then immediately destroyed. Certificates carrying this extension are intended to be issued without a revocation mechanism and with no expiration, which simplifies long-term validation.</t>
    </abstract>
    <note removeInRFC="true">
      <name>About This Document</name>
      <t>
        Status information for this document may be found at <eref target="https://datatracker.ietf.org/doc/draft-ietf-lamps-one-signature-certs/"/>.
      </t>
      <t>Source for this draft and an issue tracker can be found at
        <eref target="https://github.com/lamps-wg/draft-ietf-lamps-one-signature-certs"/>.</t>
    </note>
  </front>
  <middle>
    <?line 124?>

<section anchor="introduction">
      <name>Introduction</name>
      <t>The landscape of server-based signing services has changed over the decades. Recently, one type of signature service has gained favor, where the signing private key and the signing certificate are created for each digital signature, rather than re-using a static key and certificate over an extended time period.</t>
      <t>Some reasons why this type of signature services has been successful are:</t>
      <ul spacing="normal">
        <li>
          <t>The certificate will always have a predictable validity time from the time of signing;</t>
        </li>
        <li>
          <t>The time of signing is guaranteed by the certificate issue date;</t>
        </li>
        <li>
          <t>The identity information in the certificate can be adapted to the signing context;</t>
        </li>
        <li>
          <t>Revocation of signing certificates is practically non-existent despite many years of operation and millions of signatures; and</t>
        </li>
        <li>
          <t>The signature service holds no pre-stored user keys or certificates.</t>
        </li>
      </ul>
      <t>While this type of signature service solves many problems, it still suffers from the complexity caused by expiring signing certificates. One solution to this problem is the Signature Validation Token (SVT) <xref target="RFC9321"/>, where future validation can rely on a previous successful validation rather than validation based on aging data.</t>
      <t>This document takes this one step further and allows validation at any time in the future as long as trust in the CA certificate can be established.</t>
      <section anchor="basic-features">
        <name>Basic features</name>
        <t>One signature certificates have the following common characteristics:</t>
        <ul spacing="normal">
          <li>
            <t>They are bound to a specific document content;</t>
          </li>
          <li>
            <t>They assert that the corresponding private key was destroyed immediately after signing; and</t>
          </li>
          <li>
            <t>They are typically issued without a revocation mechanism and with no expiration.</t>
          </li>
        </ul>
        <t>The signedDocumentBinding extension binds the public key in the certificate to verification of the signature for the single identified document. When this extension is present, it is <bcp14>RECOMMENDED</bcp14> that the certificate not expire (notAfter is set to the GeneralizedTime value of 99991231235959Z) and the noRevAvail certificate extension <xref target="RFC9608"/> is also present to indicate that no revocation information is available for this certificate.</t>
        <section anchor="revocation">
          <name>Revocation</name>
          <t>Traditional certificates that are re-used over time have many legitimate reasons for revocation, such as if the private key is lost or compromised. This can lead to large volumes of revocation data.</t>
          <t>The fact that the same key is used many times exposes the key for the risks of loss, unauthorized usage, or theft. When many objects are signed with the same private key, the risk of exposure and the number of affected signed documents upon revocation increases, unless properly timestamped and properly verified.</t>
          <t>When a signing key is used only once, that risk of exposure is greatly reduced, and it has been shown that most usages of dedicated private keys and certificates no longer require revocation.</t>
          <t>When certificates are used to validate digital signatures the reasons for revocation after the time of signing are not relevant when the key is used only once. Under established signature validation procedures <xref target="EN319102-1"/>, a signature is assessed relative to a best-signature-time: the earliest time at which the signature is proven to have existed. A signing certificate that is revoked or that expires after the best-signature-time does not invalidate the signature; the past signature validation process treats such a signature as valid. The same principle underlies the grace period concept described for CAdES signatures <xref target="RFC5126"/>. Consequently, revocation information whose effective time is after the time of signing is not relevant to the validity of the signature.</t>
          <t>Establishing the best-signature-time normally requires a trusted time source such as a time-stamp <xref target="RFC3161"/> from a trusted authority. A one signature certificate is created at the time of signing, so its issuance time establishes the time of signing directly, with the issuing CA fulfilling a role analogous to that of a time-stamp authority. Any revocation of the certificate would necessarily take effect after this time and would therefore not affect the validity of the already-created signature.</t>
          <t>When revocation is due to key compromise, signature verifiers take extra caution because the key compromise could have taken place before the document signature was created. However, for a one signature certificate, the signing key is generated for a single signature and destroyed immediately afterwards, so the window during which the private key exists and could be compromised is extremely small.</t>
        </section>
        <section anchor="ca-certificate-validity">
          <name>CA certificate validity</name>
          <t>Even if the end entity certificate has infinite validity, the capability to validate the certificate is limited to the capability to trust the CA. For initial validation, in a typical scenario, this is limited by the validity period of the CA certificate.</t>
          <t>However, a validation service may have several options available for how to handle CA trust, in particular when re-validating archived documents:</t>
          <ul spacing="normal">
            <li>
              <t>The verifier may list the CA key and identity as trusted and treat it as a trust anchor.</t>
            </li>
            <li>
              <t>The verifier may cross certify the CA and make it available for validation to a local trusted Trust Anchor.</t>
            </li>
          </ul>
          <t>In addition, when a certificate repository is available, renewal of the CA certificate can preserve the ability to validate the infinite validity end entity certificate.</t>
          <t>This specification assumes that initial validation of a signed document is performed within the validity period of the CA certificate. Realizing the full benefit of a non-expiring end entity certificate for later re-validation <bcp14>MAY</bcp14> require additional trust provisioning by the verifier.</t>
          <t>Mechanisms for establishing trust in a CA beyond their certificate validity period are outside the scope of this specification.</t>
        </section>
      </section>
    </section>
    <section anchor="conventions-and-definitions">
      <name>Conventions and Definitions</name>
      <t>The key words "<bcp14>MUST</bcp14>", "<bcp14>MUST NOT</bcp14>", "<bcp14>REQUIRED</bcp14>", "<bcp14>SHALL</bcp14>", "<bcp14>SHALL
NOT</bcp14>", "<bcp14>SHOULD</bcp14>", "<bcp14>SHOULD NOT</bcp14>", "<bcp14>RECOMMENDED</bcp14>", "<bcp14>NOT RECOMMENDED</bcp14>",
"<bcp14>MAY</bcp14>", and "<bcp14>OPTIONAL</bcp14>" in this document are to be interpreted as
described in BCP 14 <xref target="RFC2119"/> <xref target="RFC8174"/> when, and only when, they
appear in all capitals, as shown here.</t>
      <?line -18?>

</section>
    <section anchor="certificate-content">
      <name>Certificate content</name>
      <t>This document defines the signedDocumentBinding extension, which a CA includes in a certificate to bind that certificate to a specific signed content. The presence of this extension is the signal by which a relying party recognizes a certificate as a one signature certificate.</t>
      <t>A certificate that includes the signedDocumentBinding extension <bcp14>SHOULD</bcp14> also be issued with the properties described below, which together provide the simplified long-term validation that motivates this document.</t>
      <t>Such a certificate <bcp14>SHOULD</bcp14> indicate that it has no well-defined expiration date by setting the notAfter field to the GeneralizedTime value 99991231235959Z, as defined in <xref target="RFC5280"/>.</t>
      <t>Such a certificate <bcp14>SHOULD</bcp14> include the id-ce-noRevAvail extension in compliance with <xref target="RFC9608"/>, indicating that the certificate is not supported by any revocation mechanism.</t>
      <t>A verifier <bcp14>MUST</bcp14> determine whether these properties apply by inspecting the notAfter field and the presence of the id-ce-noRevAvail extension.</t>
      <section anchor="the-signeddocumentbinding-extension">
        <name>The signedDocumentBinding extension</name>
        <t>The signedDocumentBinding extension binds a certificate to a specific signed content. When present, conforming CAs <bcp14>SHOULD</bcp14> mark this extension as non-critical.</t>
        <artwork><![CDATA[
name           id-pe-signedDocumentBinding
OID            { id-pe 37 }
syntax         SignedDocumentBinding
criticality    SHOULD be FALSE

SignedDocumentBinding ::= SEQUENCE {
dataTbsHash     OCTET STRING,
hashAlg         DigestAlgorithmIdentifier,
bindingType     UTF8String OPTIONAL }
]]></artwork>
        <t>The <tt>dataTbsHash</tt> field <bcp14>MUST</bcp14> contain a hash of the data to be signed.</t>
        <t>The <tt>hashAlg</tt> field <bcp14>MUST</bcp14> contain the AlgorithmIdentifier of the hash algorithm used to generate the <tt>dataTbsHash</tt> value.</t>
        <t>The <tt>bindingType</tt> field <bcp14>MAY</bcp14> contain an identifier that specifies how the data to be signed is derived from the digital object to be signed.</t>
        <t>Adding this extension to a certificate is a statement by the CA that the signing key is generated exclusively for the purpose of signing the document bound by this extension, and that the signing key is destroyed after signing. The details for this procedure and how the destruction of the signing key is assured <bcp14>SHOULD</bcp14> be outlined in the certificate policy <xref target="RFC3647"/> of the issued certificate.</t>
      </section>
      <section anchor="defined-bindingtype-identifiers">
        <name>Defined bindingType identifiers</name>
        <t>The <tt>bindingType</tt> field defines how the data to be signed (<tt>dataTbsHash</tt>) is derived from the signed document.
This field identifies a deterministic procedure for selecting the portion of the signed content that is included in the hash computation.
When the field is omitted, the rules for the default binding type apply.</t>
        <t>The purpose of the <tt>dataTbsHash</tt> value is to bind the certificate to the document being signed in order to prevent re-use of the signing key for multiple signed documents. This enforces the contract that the signing key is used only once for creation of one signature only. Validators <bcp14>SHOULD</bcp14> verify that the signed document matches the certificate’s binding information.
This verification is not required for the signature to validate successfully but provides an additional safeguard against misuse or substitution of certificates.</t>
        <t>This document defines a set of <tt>bindingType</tt> identifiers. Additional <tt>bindingType</tt> identifiers <bcp14>MAY</bcp14> be defined by future specifications.</t>
        <section anchor="default-binding">
          <name>Default Binding</name>
          <t>When the <tt>bindingType</tt> is absent, the default binding applies.
In this case, the <tt>dataTbsHash</tt> value is the hash of the exact data that is signed by the signature format in use.</t>
          <t>Examples include:</t>
          <ul spacing="normal">
            <li>
              <t>For XML Signatures <xref target="XMLDSIG11"/>, the hash of the SignedInfo element.</t>
            </li>
            <li>
              <t>For CMS Signatures <xref target="RFC5652"/>, the DER-encoded SignedAttributes structure.</t>
            </li>
            <li>
              <t>For other formats, the data structure input directly to the signature algorithm.</t>
            </li>
          </ul>
          <t>This <tt>bindingType</tt> <bcp14>MUST NOT</bcp14> be used when the data to be signed includes either the signer certificate itself or a hash of the signer certificate. This includes JWS and COSE signed documents that can include signer certificates in the protected header. JWS signatures <xref target="RFC7515"/> <bcp14>MUST</bcp14> use the "jws" <tt>bindingType</tt> and COSE signatures <xref target="RFC8152"/> <bcp14>MUST</bcp14> use the "cose" binding type.</t>
        </section>
        <section anchor="cades-binding">
          <name>CAdES Binding</name>
          <t>Identifier: "cades"</t>
          <t>For CMS <xref target="RFC5652"/> or ETSI CAdES <xref target="CADES"/> signatures incorporating SigningCertificate or SigningCertificateV2 attributes <xref target="RFC5035"/> in signedAttrs,
the <tt>dataTbsHash</tt> value is computed over the DER encoding of SignerInfo excluding any instances of SigningCertificate or SigningCertificateV2 attributes from the SignedAttributes set.</t>
          <t>This <tt>bindingType</tt> also applies to PDF <xref target="ISOPDF2"/> and ETSI PAdES <xref target="PADES"/> signed documents when applicable due to its use of CMS for signing.</t>
        </section>
        <section anchor="xades-binding">
          <name>XAdES Binding</name>
          <t>Identifier: "xades"</t>
          <t>For ETSI XML Advanced Electronic Signatures <xref target="XADES"/>, the <tt>dataTbsHash</tt> value is computed over the canonicalized SignedInfo element,
with any Reference elements whose Type attribute equals "http://uri.etsi.org/01903#SignedProperties" removed prior to hashing.
This ensures that the SignedProperties element, which may contain references to the signing certificate, does not create a circular dependency. Extraction of the Reference element <bcp14>MUST</bcp14> be done by removing only the characters from the leading &lt;Reference&gt; tag up to and including the ending &lt;/Reference&gt; tag, preserving all other bytes of SignedInfo unchanged, including any white space or line feeds.</t>
          <t>Note: This operation is purely textual and does not require XML parsing beyond locating the tag boundaries.</t>
        </section>
        <section anchor="jws-binding">
          <name>JWS Binding</name>
          <t>Identifier: "jws"</t>
          <t>For JSON Web Signatures (JWS) <xref target="RFC7515"/>, the <tt>dataTbsHash</tt> value is computed over the payload only.
The protected header and any unprotected header parameters <bcp14>MUST NOT</bcp14> be included in the hash calculation.</t>
          <t>This exclusion avoids circular dependencies where certificate data may appear in the protected header.</t>
        </section>
        <section anchor="cose-binding">
          <name>COSE Binding</name>
          <t>Identifier: "cose"</t>
          <t>For COSE signatures <xref target="RFC8152"/>, the <tt>dataTbsHash</tt> value is computed over the payload only.
The protected header and any unprotected header parameters <bcp14>MUST NOT</bcp14> be included in the hash calculation.</t>
          <t>This exclusion avoids circular dependencies where certificate data may appear in the protected header.</t>
        </section>
      </section>
    </section>
    <section anchor="asn1-module">
      <name>ASN.1 Module</name>
      <sourcecode markers="true"><![CDATA[
   SignedDocumentBindingExtn
     { iso(1) identified-organization(3) dod(6) internet(1)
       security(5) mechanisms(5) pkix(7) id-mod(0)
       id-mod-signedDocumentBinding(TBD) }

   DEFINITIONS IMPLICIT TAGS ::=
   BEGIN

   IMPORTS
     EXTENSION, id-pkix, id-pe
     FROM PKIX-CommonTypes-2009  -- RFC 5912
       { iso(1) identified-organization(3) dod(6) internet(1)
         security(5) mechanisms(5) pkix(7) id-mod(0)
         id-mod-pkixCommon-02(57) }

     DigestAlgorithmIdentifier
     FROM CryptographicMessageSyntax-2010 -- RFC 6268
       { iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1)
         pkcs-9(9) smime(16) modules(0) id-mod-cms-2009(58) } ;

   -- signedDocumentBinding Certificate Extension

   ext-SignedDocumentBinding EXTENSION ::= {
     SYNTAX SignedDocumentBinding
     IDENTIFIED BY id-pe-signedDocumentBinding }

   SignedDocumentBinding ::= SEQUENCE {
     dataTbsHash     OCTET STRING,
     hashAlg         DigestAlgorithmIdentifier,
     bindingType     UTF8String OPTIONAL }

   -- signedDocumentBinding Certificate Extension OID

   id-pe-signedDocumentBinding OBJECT IDENTIFIER ::= { id-pe 37 }

   END
 ]]></sourcecode>
    </section>
    <section anchor="security-considerations">
      <name>Security Considerations</name>
      <section anchor="certificates-without-revocation">
        <name>Certificates Without Revocation</name>
        <t>One signature certificates are intended for use with the id-ce-noRevAvail extension and no revocation mechanism. Such certificates attest only to the state of trust and correctness of procedures at the time of issuance. A verifier cannot infer this property from the signedDocumentBinding extension alone and determines it by inspecting the certificate for the id-ce-noRevAvail extension.</t>
        <t>The Security considerations in <xref target="RFC9608"/> also applies to this document.</t>
      </section>
      <section anchor="signed-document-binding">
        <name>Signed Document Binding</name>
        <t>The signedDocumentBinding extension binds the certificate to specific signed content by including a hash of the data to be signed. Verification of this binding is not required for successful cryptographic validation of the signature. A signature can therefore validate correctly even if the binding is not checked.</t>
        <t>However, a relying party <bcp14>SHOULD</bcp14> verify that the signed content matches the dataTbsHash value in the signedDocumentBinding extension. Performing this check ensures that the certificate is used only with the content for which it was issued and enforces the intended scope of the certificate.</t>
        <t>The security model of this specification states that the associated private key is generated for, and used in, exactly one signing operation and is then destroyed. This property holds independently of whether the binding is verified by the relying party. Nevertheless, failure to verify the binding weakens the protections provided by this specification and increases the risk of certificate substitution or unintended certificate reuse.</t>
        <t>When verified, the signedDocumentBinding extension provides an additional safeguard against the use of the certificate for any signature other than the one for which it was issued.</t>
      </section>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <section anchor="registry-for-signeddocumentbinding-bindingtype-identifiers">
        <name>Registry for signedDocumentBinding bindingType Identifiers</name>
        <t>IANA is requested to create a new registry entitled: “Signed Document Binding Type Identifiers”</t>
        <t>This registry shall contain identifiers used in the bindingType field of the signedDocumentBinding certificate extension defined in this document.</t>
        <section anchor="registry-contents">
          <name>Registry Contents</name>
          <t>Each registry entry shall contain the following fields:</t>
          <ul spacing="normal">
            <li>
              <t>Identifier: A UTF-8 string identifying the binding type.</t>
            </li>
            <li>
              <t>Description: A brief description of how the dataTbsHash value is computed.</t>
            </li>
            <li>
              <t>Reference: A reference to the document that defines the binding type.</t>
            </li>
          </ul>
        </section>
        <section anchor="registration-policy">
          <name>Registration Policy</name>
          <t>The registration policy for this registry is Specification Required as defined in <xref target="RFC8174"/>.</t>
          <t>The designated expert(s) <bcp14>SHALL</bcp14> ensure that:</t>
          <ul spacing="normal">
            <li>
              <t>The binding type definition clearly specifies a deterministic and unambiguous procedure for computing the dataTbsHash value.</t>
            </li>
            <li>
              <t>The specification explains how circular dependencies with certificate inclusion are avoided, where applicable.</t>
            </li>
            <li>
              <t>The identifier is unique within the registry.</t>
            </li>
          </ul>
        </section>
        <section anchor="initial-registry-contents">
          <name>Initial Registry Contents</name>
          <t>IANA is requested to populate the registry with the following initial values:</t>
          <ul spacing="normal">
            <li>
              <t>Identifier: (absent)</t>
            </li>
            <li>
              <t>Description: Default binding as defined in this document</t>
            </li>
            <li>
              <t>Reference: This document</t>
            </li>
            <li>
              <t>Identifier: cades</t>
            </li>
            <li>
              <t>Description: CMS/CAdES binding excluding SigningCertificate attributes</t>
            </li>
            <li>
              <t>Reference: This document</t>
            </li>
            <li>
              <t>Identifier: xades</t>
            </li>
            <li>
              <t>Description: XAdES binding excluding SignedProperties reference</t>
            </li>
            <li>
              <t>Reference: This document</t>
            </li>
            <li>
              <t>Identifier: jws</t>
            </li>
            <li>
              <t>Description: JWS payload-only binding</t>
            </li>
            <li>
              <t>Reference: This document</t>
            </li>
            <li>
              <t>Identifier: cose</t>
            </li>
            <li>
              <t>Description: COSE payload-only binding</t>
            </li>
            <li>
              <t>Reference: This document</t>
            </li>
          </ul>
        </section>
      </section>
    </section>
  </middle>
  <back>
    <references anchor="sec-combined-references">
      <name>References</name>
      <references anchor="sec-normative-references">
        <name>Normative References</name>
        <reference anchor="RFC2119">
          <front>
            <title>Key words for use in RFCs to Indicate Requirement Levels</title>
            <author fullname="S. Bradner" initials="S." surname="Bradner"/>
            <date month="March" year="1997"/>
            <abstract>
              <t>In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="2119"/>
          <seriesInfo name="DOI" value="10.17487/RFC2119"/>
        </reference>
        <reference anchor="RFC3647">
          <front>
            <title>Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework</title>
            <author fullname="S. Chokhani" initials="S." surname="Chokhani"/>
            <author fullname="W. Ford" initials="W." surname="Ford"/>
            <author fullname="R. Sabett" initials="R." surname="Sabett"/>
            <author fullname="C. Merrill" initials="C." surname="Merrill"/>
            <author fullname="S. Wu" initials="S." surname="Wu"/>
            <date month="November" year="2003"/>
            <abstract>
              <t>This document presents a framework to assist the writers of certificate policies or certification practice statements for participants within public key infrastructures, such as certification authorities, policy authorities, and communities of interest that wish to rely on certificates. In particular, the framework provides a comprehensive list of topics that potentially (at the writer's discretion) need to be covered in a certificate policy or a certification practice statement. This document supersedes RFC 2527.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="3647"/>
          <seriesInfo name="DOI" value="10.17487/RFC3647"/>
        </reference>
        <reference anchor="RFC5035">
          <front>
            <title>Enhanced Security Services (ESS) Update: Adding CertID Algorithm Agility</title>
            <author fullname="J. Schaad" initials="J." surname="Schaad"/>
            <date month="August" year="2007"/>
            <abstract>
              <t>In the original Enhanced Security Services for S/MIME document (RFC 2634), a structure for cryptographically linking the certificate to be used in validation with the signature was introduced; this structure was hardwired to use SHA-1. This document allows for the structure to have algorithm agility and defines a new attribute for this purpose. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="5035"/>
          <seriesInfo name="DOI" value="10.17487/RFC5035"/>
        </reference>
        <reference anchor="RFC5280">
          <front>
            <title>Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile</title>
            <author fullname="D. Cooper" initials="D." surname="Cooper"/>
            <author fullname="S. Santesson" initials="S." surname="Santesson"/>
            <author fullname="S. Farrell" initials="S." surname="Farrell"/>
            <author fullname="S. Boeyen" initials="S." surname="Boeyen"/>
            <author fullname="R. Housley" initials="R." surname="Housley"/>
            <author fullname="W. Polk" initials="W." surname="Polk"/>
            <date month="May" year="2008"/>
            <abstract>
              <t>This memo profiles the X.509 v3 certificate and X.509 v2 certificate revocation list (CRL) for use in the Internet. An overview of this approach and model is provided as an introduction. The X.509 v3 certificate format is described in detail, with additional information regarding the format and semantics of Internet name forms. Standard certificate extensions are described and two Internet-specific extensions are defined. A set of required certificate extensions is specified. The X.509 v2 CRL format is described in detail along with standard and Internet-specific extensions. An algorithm for X.509 certification path validation is described. An ASN.1 module and examples are provided in the appendices. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="5280"/>
          <seriesInfo name="DOI" value="10.17487/RFC5280"/>
        </reference>
        <reference anchor="RFC5652">
          <front>
            <title>Cryptographic Message Syntax (CMS)</title>
            <author fullname="R. Housley" initials="R." surname="Housley"/>
            <date month="September" year="2009"/>
            <abstract>
              <t>This document describes the Cryptographic Message Syntax (CMS). This syntax is used to digitally sign, digest, authenticate, or encrypt arbitrary message content. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="STD" value="70"/>
          <seriesInfo name="RFC" value="5652"/>
          <seriesInfo name="DOI" value="10.17487/RFC5652"/>
        </reference>
        <reference anchor="RFC7515">
          <front>
            <title>JSON Web Signature (JWS)</title>
            <author fullname="M. Jones" initials="M." surname="Jones"/>
            <author fullname="J. Bradley" initials="J." surname="Bradley"/>
            <author fullname="N. Sakimura" initials="N." surname="Sakimura"/>
            <date month="May" year="2015"/>
            <abstract>
              <t>JSON Web Signature (JWS) represents content secured with digital signatures or Message Authentication Codes (MACs) using JSON-based data structures. Cryptographic algorithms and identifiers for use with this specification are described in the separate JSON Web Algorithms (JWA) specification and an IANA registry defined by that specification. Related encryption capabilities are described in the separate JSON Web Encryption (JWE) specification.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="7515"/>
          <seriesInfo name="DOI" value="10.17487/RFC7515"/>
        </reference>
        <reference anchor="RFC8152">
          <front>
            <title>CBOR Object Signing and Encryption (COSE)</title>
            <author fullname="J. Schaad" initials="J." surname="Schaad"/>
            <date month="July" year="2017"/>
            <abstract>
              <t>Concise Binary Object Representation (CBOR) is a data format designed for small code size and small message size. There is a need for the ability to have basic security services defined for this data format. This document defines the CBOR Object Signing and Encryption (COSE) protocol. This specification describes how to create and process signatures, message authentication codes, and encryption using CBOR for serialization. This specification additionally describes how to represent cryptographic keys using CBOR.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="8152"/>
          <seriesInfo name="DOI" value="10.17487/RFC8152"/>
        </reference>
        <reference anchor="RFC8174">
          <front>
            <title>Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words</title>
            <author fullname="B. Leiba" initials="B." surname="Leiba"/>
            <date month="May" year="2017"/>
            <abstract>
              <t>RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="8174"/>
          <seriesInfo name="DOI" value="10.17487/RFC8174"/>
        </reference>
        <reference anchor="RFC9608">
          <front>
            <title>No Revocation Available for X.509 Public Key Certificates</title>
            <author fullname="R. Housley" initials="R." surname="Housley"/>
            <author fullname="T. Okubo" initials="T." surname="Okubo"/>
            <author fullname="J. Mandel" initials="J." surname="Mandel"/>
            <date month="June" year="2024"/>
            <abstract>
              <t>X.509v3 public key certificates are profiled in RFC 5280. Short-lived certificates are seeing greater use in the Internet. The Certification Authority (CA) that issues these short-lived certificates do not publish revocation information because the certificate lifespan that is shorter than the time needed to detect, report, and distribute revocation information. Some long-lived X.509v3 public key certificates never expire, and they are never revoked. This specification defines the noRevAvail certificate extension so that a relying party can readily determine that the CA does not publish revocation information for the certificate, and it updates the certification path validation algorithm defined in RFC 5280 so that revocation checking is skipped when the noRevAvail certificate extension is present.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9608"/>
          <seriesInfo name="DOI" value="10.17487/RFC9608"/>
        </reference>
        <reference anchor="XMLDSIG11">
          <front>
            <title>XML Signature Syntax and Processing Version 1.1</title>
            <author initials="D." surname="Eastlake" fullname="Donald Eastlake">
              <organization/>
            </author>
            <author initials="J." surname="Reagle" fullname="Joseph Reagle">
              <organization/>
            </author>
            <author initials="D." surname="Solo" fullname="David Solo">
              <organization/>
            </author>
            <author initials="F." surname="Hirsch" fullname="Frederick Hirsch">
              <organization/>
            </author>
            <author initials="M." surname="Nystrom" fullname="Magnus Nystrom">
              <organization/>
            </author>
            <author initials="T." surname="Roessler" fullname="Thomas Roessler">
              <organization/>
            </author>
            <author initials="K." surname="Yiu" fullname="Kelvin Yiu">
              <organization/>
            </author>
            <date year="2013" month="April" day="11"/>
          </front>
          <seriesInfo name="W3C" value="Proposed Recommendation"/>
        </reference>
        <reference anchor="ISOPDF2">
          <front>
            <title>Document management -- Portable document format -- Part 2: PDF 2.0</title>
            <author>
              <organization>ISO</organization>
            </author>
            <date year="2017" month="July"/>
          </front>
          <seriesInfo name="ISO" value="32000-2"/>
        </reference>
        <reference anchor="XADES">
          <front>
            <title>Electronic Signatures and Infrastructures (ESI); XAdES digital signatures; Part 1: Building blocks and XAdES baseline signatures</title>
            <author>
              <organization>ETSI</organization>
            </author>
            <date year="2024" month="July"/>
          </front>
          <seriesInfo name="ETSI" value="EN 319 132-1 v1.3.1"/>
        </reference>
        <reference anchor="PADES">
          <front>
            <title>Electronic Signatures and Infrastructures (ESI); PAdES digital signatures; Part 1: Building blocks and PAdES baseline signatures</title>
            <author>
              <organization>ETSI</organization>
            </author>
            <date year="2024" month="January"/>
          </front>
          <seriesInfo name="ETSI" value="EN 319 142-1 v1.2.1"/>
        </reference>
        <reference anchor="CADES">
          <front>
            <title>Electronic Signatures and Infrastructures (ESI); CAdES digital signatures; Part 1: Building blocks and CAdES baseline signatures</title>
            <author>
              <organization>ETSI</organization>
            </author>
            <date year="2021" month="October"/>
          </front>
          <seriesInfo name="ETSI" value="EN 319 122-1 v1.2.1"/>
        </reference>
      </references>
      <references anchor="sec-informative-references">
        <name>Informative References</name>
        <reference anchor="RFC3161">
          <front>
            <title>Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP)</title>
            <author fullname="C. Adams" initials="C." surname="Adams"/>
            <author fullname="P. Cain" initials="P." surname="Cain"/>
            <author fullname="D. Pinkas" initials="D." surname="Pinkas"/>
            <author fullname="R. Zuccherato" initials="R." surname="Zuccherato"/>
            <date month="August" year="2001"/>
            <abstract>
              <t>This document describes the format of a request sent to a Time Stamping Authority (TSA) and of the response that is returned. It also establishes several security-relevant requirements for TSA operation, with regards to processing requests to generate responses. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="3161"/>
          <seriesInfo name="DOI" value="10.17487/RFC3161"/>
        </reference>
        <reference anchor="RFC5126">
          <front>
            <title>CMS Advanced Electronic Signatures (CAdES)</title>
            <author fullname="D. Pinkas" initials="D." surname="Pinkas"/>
            <author fullname="N. Pope" initials="N." surname="Pope"/>
            <author fullname="J. Ross" initials="J." surname="Ross"/>
            <date month="March" year="2008"/>
            <abstract>
              <t>This document defines the format of an electronic signature that can remain valid over long periods. This includes evidence as to its validity even if the signer or verifying party later attempts to deny (i.e., repudiates) the validity of the signature.</t>
              <t>The format can be considered as an extension to RFC 3852 and RFC 2634, where, when appropriate, additional signed and unsigned attributes have been defined.</t>
              <t>The contents of this Informational RFC amount to a transposition of the ETSI Technical Specification (TS) 101 733 V.1.7.4 (CMS Advanced Electronic Signatures -- CAdES) and is technically equivalent to it.</t>
              <t>The technical contents of this specification are maintained by ETSI. The ETSI TS and further updates are available free of charge at: http://www.etsi.org/WebSite/Standards/StandardsDownload.aspx This memo provides information for the Internet community.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="5126"/>
          <seriesInfo name="DOI" value="10.17487/RFC5126"/>
        </reference>
        <reference anchor="RFC9321">
          <front>
            <title>Signature Validation Token</title>
            <author fullname="S. Santesson" initials="S." surname="Santesson"/>
            <author fullname="R. Housley" initials="R." surname="Housley"/>
            <date month="October" year="2022"/>
            <abstract>
              <t>Electronic signatures have a limited lifespan with respect to the time period that they can be validated and determined to be authentic. The Signature Validation Token (SVT) defined in this specification provides evidence that asserts the validity of an electronic signature. The SVT is provided by a trusted authority, which asserts that a particular signature was successfully validated according to defined procedures at a certain time. Any future validation of that electronic signature can be satisfied by validating the SVT without any need to also validate the original electronic signature or the associated digital certificates. The SVT supports electronic signatures in Cryptographic Message Syntax (CMS), XML, PDF, and JSON documents.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9321"/>
          <seriesInfo name="DOI" value="10.17487/RFC9321"/>
        </reference>
        <reference anchor="EN319102-1">
          <front>
            <title>Electronic Signatures and Trust Infrastructures (ESI); Procedures for Creation and Validation of AdES Digital Signatures; Part 1: Creation and Validation</title>
            <author>
              <organization>ETSI</organization>
            </author>
            <date year="2024" month="June"/>
          </front>
          <seriesInfo name="ETSI" value="EN 319 102-1 v1.4.1"/>
        </reference>
      </references>
    </references>
    <?line 410?>

<section anchor="example-certificates">
      <name>Example Certificates</name>
      <t>This appendix contains non-normative example certificates that conform to
this specification.</t>
      <t>Both certificates are issued to the subject "John Doe" by the issuing CA
"Example Org CA". Each certificate has no well-defined expiration date
(the notAfter field is set to the GeneralizedTime value 99991231235959Z),
includes the id-ce-noRevAvail extension, asserts the nonRepudiation key
usage as a critical extension, includes an authorityKeyIdentifier
extension, and includes the signedDocumentBinding extension. In both
examples the data to be signed is hashed with SHA-256, and the dataTbsHash
value is the 32-octet sequence 0x01 0x02 ... 0x20.</t>
      <section anchor="certificate-with-default-binding">
        <name>Certificate with Default Binding</name>
        <t>In this certificate the bindingType field is absent, so the default binding
applies. The signedDocumentBinding extension value contains only the
dataTbsHash and hashAlg fields:</t>
        <artwork><![CDATA[
SignedDocumentBinding ::= SEQUENCE {
  dataTbsHash  0102030405060708090A0B0C0D0E0F10
               1112131415161718191A1B1C1D1E1F20,
  hashAlg      id-sha256 }

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
]]></artwork>
      </section>
      <section anchor="certificate-with-cades-binding">
        <name>Certificate with "cades" Binding</name>
        <t>In this certificate the bindingType field is set to "cades", indicating the
CAdES binding defined in this document. The signedDocumentBinding extension
value contains the dataTbsHash, hashAlg, and bindingType fields:</t>
        <artwork><![CDATA[
SignedDocumentBinding ::= SEQUENCE {
  dataTbsHash  0102030405060708090A0B0C0D0E0F10
               1112131415161718191A1B1C1D1E1F20,
  hashAlg      id-sha256,
  bindingType  "cades" }

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
]]></artwork>
      </section>
    </section>
    <section numbered="false" anchor="acknowledgments">
      <name>Acknowledgments</name>
      <t>TODO acknowledge.</t>
    </section>
  </back>
  <!-- ##markdown-source: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-->

</rfc>
