{
  "draft": "draft-ietf-lamps-cert-binding-for-multi-auth-06",
  "doc_id": "RFC9763",
  "title": "Related Certificates for Use in Multiple Authentications within a Protocol",
  "authors": [
    "A. Becker",
    "R. Guthrie",
    "M. Jenkins"
  ],
  "format": [
    "XML",
    "TEXT",
    "HTML",
    "PDF"
  ],
  "page_count": "13",
  "pub_status": "PROPOSED STANDARD",
  "status": "PROPOSED STANDARD",
  "source": "Limited Additional Mechanisms for PKIX and SMIME",
  "abstract": "This document defines a new Certificate Signing Request (CSR) attribute, relatedCertRequest, and a new X.509 certificate extension, RelatedCertificate.  The use of the relatedCertRequest attribute in a CSR and the inclusion of the RelatedCertificate extension in the resulting certificate together provide additional assurance that two certificates each belong to the same end entity.  This mechanism is particularly useful in the context of non-composite hybrid authentication, which enables users to employ the same certificates in hybrid authentication as in authentication done with only traditional or post-quantum algorithms.",
  "pub_date": "June 2025",
  "keywords": [
    "certificate",
    "certificate request",
    "hybrid",
    "authentication",
    "post-quantum",
    "X.509",
    "digital signature",
    "quantum resistant"
  ],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [],
  "updated_by": [],
  "see_also": [],
  "doi": "10.17487/RFC9763",
  "errata_url": "https://www.rfc-editor.org/errata/rfc9763"
}