| (I) (1.) A contraction of "Public-Key Infrastructure (X.509)", the
name of the IETF working group that is specifying an architecture
and set of protocols needed to support an X.509-based PKI for the
Internet. (2.) A collective name for that architecture and set of
protocols.
(C) The goal of PKIX is to facilitate the use of X.509 public-key
certificates in multiple Internet applications and to promote
interoperability between different implementations that use those
certificates. The resulting PKI is intended to provide a framework
that supports a range of trust and hierarchy environments and a
range of usage environments. PKIX specifies (a) profiles of the v3
X.509 public-key certificate standards and the v2 X.509 CRL
standards for the Internet; (b) operational protocols used by
relying parties to obtain information such as certificates or
certificate status; (c) management protocols used by system
entities to exchange information needed for proper management of
the PKI; and (d) information about certificate policies and CPSs,
covering the areas of PKI security not directly addressed in the
rest of PKIX.
|
