2 Normative references

The following standards contain provisions that, through reference in this text, constitute provisions of this Standard. At the time of publication, the editions indicated were valid. All standards are subject to revision, and parties to agreements based on this Standard are encouraged to investigate the possibilities of applying the most recent editions of the standards indicated below.

ANSI X9.52 American National Standards Institute. ANSI X9.52-1998, Triple Data Encryption Algorithm Modes of Operation. 1998.

ECMA 235, The ECMA GSS-API Mechanism

FIPS PUB 46 Data Encryption Standard

FIPS PUB 81 DES Modes of Operation

IETF Internet X.509 Public Key Infrastructure; Time Stamp Protocols; March 2000

ISO/IEC Directives, 1989 Part 3 - Drafting and Presentation of International Standards

ISO/IEC 10118-:1998 Information technology – Security techniques – Hash-functions – Part 3: Dedicated hash-functions (RIPEMD-160 reference)

Note: The draft RIPEMD-160 specification and sample code are also available at ftp://ftp.esat.kuleuven.ac.be/pub/bosselae/ripemd

ISO 7498-1, Information Processing Systems - Open Systems Interconnection - Basic Reference Model

ISO 7498-2, Information processing systems – Open Systems Interconnection – Basic reference Model – Part 2: Security Architecture

ISO/TR 8509, Information Processing Systems - Open Systems Interconnection - Service Conventions

ISO 8649:1987, Information Processing Systems - Open Systems Interconnection - Service Definition for the Association Control Service Element

Integrated Secure Communication Layer V1.00 MEDIS-DC

ITU-T Recommendation X.509 (03/00) “Information technology - Open Systems Interconnection - The directory: Public-key and attribute certificate frameworks”

Note: ITU-T Recommendation X.509 is similar to ISO/IEC 9594-8 1990. However, the ITU-T recommendation is the more familiar form, and was revised in 1993 and 2000, with two sets of corrections in 2001. ITU-T was formerly known as CCITT.

RFC 1035 Domain Name System (DNS)

RFC 1305 Network Time Protocol (Version 3) Specification, Implementation

RFC 2030 Simple Network Time Protocol (SNTP) Version 4

RFC 2131 Dynamic Host Configuration Protocol

RFC 2132 Dynamic Host Configuration Protocol Options

RFC 2136 Dynamic Updates in the Domain Name System (DNS UPDATE)

RFC 2181 Clarifications to the DNS Specification

RFC 2219 Use of DNS Aliases for Network Services

RFC 2246, Transport Layer Security (TLS) 1.0 Internet Engineering Task Force

Note: TLS is derived from SSL 3.0, and is largely compatible with it.

RFC 2251 Lightweight Directory Access Protocol (v3)

RFC-2313 PKCS #1: RSA Encryption, Version 1.5, March 1998.

RFC 2563 DHCP Option to Disable Stateless Auto-Configuration in IPv4 Clients

RFC 2782 A DNS RR for specifying the location of services (DNS SRV)

RFC 2849 The LDAP Data Interchange Format (LDIF)

RFC 2898 PKCS #5: Password-Based Cryptography Specification Version 2.0, September 2000

RFC 3211 Password-based Encryption for CMS, December 2001

RFC 3268 Advanced Encryption Standard (AES) Ciphersuites for Transport Layer Security (TLS), June 2002.

RFC 3447 PKCS #1 RSA Cryptography Specifications Version 2.1, February 2003

Note: The RSA Encryption Standard is also defined in informative annex A of ISO/IEC 9796, and in Normative Annex A of the CEN/TC251 European Prestandard prENV 12388:1996.

RFC 3852 Cryptographic Message Syntax, July 2004

RFC 3370 Cryptographic Message Syntax (CMS) Algorithms, August 2002

RFC 3565 Use of the Advanced Encryption Standard (AES) Encryption Algorithm in Cryptographic Message Syntax (CMS), July 2003

SHA-1 National Institute of Standards and Technology, FIPS Pub 180-1: Secure Hash Standard, 17 April 1995

SHA-2 National Institute of Standards and Technology, FIPS Pub 180-2: Secure Hash Standard, 1 August 2002

RFC 3851 Secure/Multipurpose Internet Mail Extensions (S/MIME) Version 3.1 Message Specification

RFC 3853 S/MIME Advanced Encryption Standard (AES) Requirement for the Session Initiation Protocol (SIP)

RFC5424 The Syslog Protocol

RFC5425 Transport Layer Security (TLS) Transport Mapping for Syslog

RFC5426 Transmission of Syslog Messages over UDP

Note: Normative RFC’s are frequently updated by issuance of subsequent RFC’s. The original older RFC is not modified to include references to the newer RFC.