{"draft":"draft-ietf-lamps-x509-policy-graph-05","doc_id":"RFC9618","title":"Updates to X.509 Policy Validation","authors":["D. Benjamin"],"format":["HTML","TEXT","PDF","XML"],"page_count":"19","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Limited Additional Mechanisms for PKIX and SMIME","abstract":"This document updates RFC 5280 to replace the algorithm for X.509\r\npolicy validation with an equivalent, more efficient algorithm. The\r\noriginal algorithm built a structure that scaled exponentially in the\r\nworst case, leaving implementations vulnerable to denial-of-service\r\nattacks.","pub_date":"August 2024","keywords":[],"obsoletes":[],"obsoleted_by":[],"updates":["RFC5280"],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC9618","errata_url":null}