| CMP (Certificate Management Protocol) | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| family: | unknown | |||||||||||||||||||||||||||||
| field of application : | certificate management | |||||||||||||||||||||||||||||
| newest version: | cmp2021(3) | |||||||||||||||||||||||||||||
| OID of the newest version: | 1.3.6.1.5.5.7.0.16 | |||||||||||||||||||||||||||||
| TCP/UDP port: | 80 (http), 443 (https), 829 (pkix-3-ca-ra) | |||||||||||||||||||||||||||||
| ||||||||||||||||||||||||||||||
| proposed standard: | ||||||||||||||||||||||||||||||
| obsolete standard: | ||||||||||||||||||||||||||||||
The Certificate Management Protocol (CMP) is an Internet protocol standardized by the IETF used for obtaining X.509 digital certificates in a public key infrastructure (PKI).
CMP is a very feature-rich and flexible protocol, supporting many types of cryptography. CMP messages are self-contained, which, as opposed to EST, makes the protocol independent of the transport mechanism and provides end-to-end security. CMP messages are encoded in ASN.1, using the DER method.
CMP is described in RFC 4210. Enrollment request messages employ the Certificate Request Message Format (CRMF), described in RFC 4211. The only other protocol so far using CRMF is Certificate Management over CMS (CMC), described in RFC 5273.