A hálózatbiztonság szempontjából legfontosabb "Request for Comment"-ek (RFC), csoportosítva.
Ipari, de-facto szabványok
Hash (tördelőalgoritmusok)
Szimmetrikus algoritmusok
-
The AES-CMAC Algorithm - RFC4493
Aszimmetrikus algoritmusok
-
(PKCS #1: RSA Encryption Version 1.5 - RFC2313 - ld. 2437)
Nyilvános kulcsú infrastuktúra
- Public key standards and licenses - RFC1170 - informal
- Internet X.509 Public Key Infrastructure Certificate and CRL Profile - RFC 2459 -- obsoleted by RFC 3280
- Internet X.509 Public Key Infrastructure Certificate Management Protocols - RFC 2510 -- obsoleted by RFC 4210
- Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework - RFC 2527 -- obsoleted by RFC 3647
- Internet X.509 Public Key Infrastructure Representation of Key Exchange Algorithm (KEA) Keys in Internet X.509 Public Key Infrastructure Certificates - RFC2528 -- informal
- Internet X.509 Public Key Infrastructure Operational Protocols - LDAPv2 - RFC 2559 -- obsoleted by RFC 3494
- X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP - RFC 2560 -- proposed standard
- Internet X.509 Public Key Infrastructure Operational Protocols: FTP and HTTP - RFC 2585 -- proposed standard
- Internet X.509 Public Key Infrastructure LDAPv2 Schema - RFC 2587 -- obsoleted by RFC 4523
- LIPKEY - A Low Infrastructure Public Key Mechanism Using SPKM - RFC 2847 -- proposed standard
- Internet X.509 Public Key Infrastructure Data Validation and Certification Server Protocols - RFC 3029
- Internet X.509 Public Key Infrastructure Qualified Certificates Profile - RFC 3039 -- obsoleted by RFC 3739
- Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) - RFC 3161 -- updated by RFC 5816
- Algorithms and Identifiers for the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile - RFC 3279
- Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile - RFC 3280 --obsoleted by 5280
- Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework - RFC 3647-- informational
- Internet X.509 Public Key Infrastructure: Logotypes in X.509 Certificates - RFC 3709
- Internet X.509 Public Key Infrastructure: Qualified Certificates Profile - RFC 3739 --proposed standard
- Determining Strengths For Public Keys Used For Exchanging Symmetric Keys - RFC3766 -- best current practice
- Internet X.509 Public Key Infrastructure (PKI) Proxy Certificate Profile - RFC 3820 -- proposed standard
- Internet X.509 Public Key Infrastructure Permanent Identifier - RFC4043
- Additional Algorithms and Identifiers for RSA Cryptography for use in the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile - RFC 4055 -- updated by RFC 5756
- Internet X.509 Public Key Infrastructure Warranty Certificate Extension - RFC 4059 -- informational
- Internet X.509 Public Key Infrastructure: Certification Path Building - RFC 4158 -- informational
- Internet X.509 Public Key Infrastructure Certificate Management Protocol (CMP) - RFC 4210 -- proposed standard
- Internet X.509 Public Key Infrastructure Certificate Request Message Format (CRMF) - RFC 4211 -- proposed standard
- Internet X.509 Public Key Infrastructure Authority Information Access Certificate Revocation List (CRL) Extension - RFC 4325 -- proposed standard -- obsoleted by RFC 5280
- Internet X.509 Public Key Infrastructure Repository Locator Service - RFC 4386 -- experimental
- Internet X.509 Public Key Infrastructure Operational Protocols: Certificate Store Access via HTTP - RFC 4387 -- prposed standard
- Using the GOST R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 Algorithms with the Internet X.509 Public Key Infrastructure Certificate and CRL Profile - RFC 4491
- Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) - RFC 4556 -- proposed standard
- Online Certificate Status Protocol (OCSP) Support for Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) - RFC 4557 -- proposed standard
- Update to DirectoryString Processing in the Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile - RFC 4630 -- obsoleted by RFC 5280
- Internet X.509 Public Key Infrastructure Subject Identification Method (SIM) - RFC 4683
- The Secure Shell (SSH) Public Key File Format - RFC 4716 -- informational
- Secure Shell Public Key Subsystem - RFC 4819 -- proposed standard
- Domain-Based Email Authentication Using Public Keys Advertised in the DNS (DomainKeys) - RFC 4870 - obsoleted by RFC 4871
- DomainKeys Identified Mail (DKIM) Signatures - RFC 4871
- Internet X.509 Public Key Infrastructure Subject Alternative Name for Expression of Seervice Name - RFC 4985
- Memorandum for Multi-Domain Public Key Infrastructure Interoperability - RFC 5217 -- informational
-
Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile - RFC 5280 -- proposed standard
-
Elliptic Curve Cryptography Subject Public Key Information - RFC 5480 -- proposed standard
-
Internet X.509 Public Key Infrastructure: Additional Algorithms and Identifiers for DSA and ECDSA - RFC 5758 -- proposed standard
-
New ASN.1 Modules for the Public Key Infrastructure Using X.509 (PKIX) - RFC 5912 -- informational
Tanúsítvány
-
SPKI Certificate Theory - RFC2693
-
SPKI Requirements - RFC2692
IPsecurity
- Security Architecture for the Internet Protocol - RFC2401
- IP Authentication Header - RFC2402
- The Use of HMAC - MD5-96 within ESP and AH - RFC2403
- The Use of HMAC-SHA-1-96 within ESP and AH - RFC2404
- The ESP DES-CBC Cipher Algorithm with Explicit IV - RFC2405
- IP Encapsulating Security Payload (ESP) - RFC2406
- The Internet IP Security Domain of Interpretation for ISAKMP - RFC2407
- Internet Security Association ad Key Management Protocol (ISAKMP) - RFC2408
- The Internet Key Exchange (IKE) - RFC2409
- The NULL Encryption Algorithm and Its Use with IPSec - RFC2410
Egyebek
-
Internet Security Glossary - RFC2828 - lásd RCF4949