论文信息 - Using Cryptographic Message Syntax (CMS) to Protect Firmware Packages

Using Cryptographic Message Syntax (CMS) to Protect Firmware Packages

This document describes the use of the Cryptographic Message Syntax (CMS) to protect firmware packages, which provide object code for one or more hardware module components. CMS is specified in RFC 3852. A digital signature is used to protect the firmware package from undetected modification and to provide data origin authentication. Encryption is optionally used to protect the firmware package from disclosure, and compression is optionally used to reduce the size of the protected firmware package. A firmware package loading receipt can optionally be generated to acknowledge the successful loading of a firmware package. Similarly, a firmware package load error report can optionally be generated to convey the failure to load a firmware package. [STANDARDS-TRACK]

Russ Housley

[1] Scott O. Bradner,et al. Key words for use in RFCs to Indicate Requirement Levels , 1997, RFC.

[2] Russ Housley,et al. An Internet Attribute Certificate Profile for Authorization , 2002, RFC.

[3] Francois Yergeau,et al. UTF-8, a transformation format of ISO 10646 , 1998, RFC.

[4] P. Hoffman. Enhanced Security Services for S/MIME , 1999, RFC.

[5] Russ Housley,et al. Cryptographic Message Syntax (CMS) , 2002, RFC.

[6] Peter Gutmann,et al. Compressed Data Content Type for Cryptographic Message Syntax (CMS) , 2002, RFC.

[7] P. T. Barry,et al. Abstract syntax notation-one (ASN.1) , 1992 .

[8] Carlisle M. Adams,et al. X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP , 1999, RFC.

[9] Russ Housley,et al. Delegated Path Validation and Delegated Path Discovery Protocol Requirements , 2001, RFC.

[10] Ian Goldberg,et al. Randomness and the Netscape browser , 1996 .

[11] Donald E. Eastlake,et al. Randomness Requirements for Security , 2005, RFC.