Certificate Management Protocol (CMP) is a Public Key Infrastructure protocol for managing X.509 certificates. CMP is used between Certification Authorities (CA), Registration Authorities (RA) and End Entities (EE). CMP provides means for initial registration of end entities, key pair update and certificate update for end entities and CAs, cross-certification between CAs, certificate revocation management, and discovery of certificates and certificate revocation lists (CRL). The CMP Client test suite is designed for robustness testing of end-entities supporting CMP protocol. The test suite acts as an evil certificate authority sending anomalous CMP responses to the end entity. The test suite uses HTTP for transporting CMP messages.
Used specifications
Specification
Title
RFC 4210
Internet X.509 Public Key Infrastructure Certificate Management Protocol (CMP)
RFC 4211
Internet X.509 Public Key Infrastructure Certificate Request Message Format (CRMF)
RFC 6712
Internet X.509 Public Key Infrastructure -- HTTP Transfer for the Certificate Management Protocol (CMP)
3GPP TS 33.310 version 11.2.0 Release 11
Universal Mobile Telecommunications System (UMTS); LTE; Network Domain Security (NDS); Authentication Framework (AF)
Tool-specific information
Tested messages
Notes
Initialization response
End-entity initialization
Certification response
Request for additional certificates for existing PKI entities
Key update response
Request for replacing an existing certificate
PKI confirmation
Confirmation message concluding the certification dialogs
PKI general message response
Generic message type containing information about CA