This wiki has been migrated to and is now deprecated. Please use that site instead.
Differences between revisions 1 and 2
Revision 1 as of 2005-10-26 14:45:35
Size: 1832
Editor: 217
Revision 2 as of 2005-10-26 14:52:05
Size: 1617
Editor: 217
Deletions are marked like this. Additions are marked like this.
Line 27: Line 27:
XXX - Add a simple example capture file to the SampleCaptures page and link from here (see below). Keep this file short, it's also a good idea to gzip it to make it even smaller, as Ethereal can open gzipped files automatically.

 * attachment:SampleCaptures/PROTO.pcap
 * attachment:cmp-trace.pcap.gz CMP certificate requests

Certificate Management Protocol (CMP)

CMP is a protocol for managing Public Key Infrastrictures (PKI) based on X.509v3 certificates. Protocol messages are defined for certificate creation and management. It is used by commercial PKI products as Entrust Security Manager and Unicert



Protocol dependencies

  • ["TCP"]: CMP can use ["TCP"] or ["HTTP"] as its transport protocol. The well known TCP port for CMP traffic is 829.

Example traffic

TODO: Add example traffic here (as plain text or Ethereal screenshot).



Preference Settings


Example capture file

  • attachment:cmp-trace.pcap.gz CMP certificate requests

Display Filter

A complete list of CMP display filter fields can be found in the [ display filter reference]

  • Show only the CMP based traffic:


Capture Filter

You cannot directly filter CMP protocol while capturing. However, if you know the ["TCP"] port used (see above), you can filter on that one.

  • Capture only the CMP traffic over the default port (829):

     tcp port 829 


CMP (last edited 2013-02-16 10:47:51 by LTejas)