This wiki has been migrated to https://gitlab.com/wireshark/wireshark/-/wikis/home and is now deprecated. Please use that site instead.
Differences between revisions 2 and 4 (spanning 2 versions)
Revision 2 as of 2005-10-26 14:52:05
Size: 1617
Editor: 217
Comment:
Revision 4 as of 2005-11-15 19:55:41
Size: 1519
Editor: GuyHarris
Comment: Point to the copy of the CMP capture on the SampleCaptures page.
Deletions are marked like this. Additions are marked like this.
Line 27: Line 27:
 * attachment:cmp-trace.pcap.gz CMP certificate requests  * attachment:SampleCaptures/cmp-trace.pcap.gz CMP certificate requests
Line 30: Line 30:
A complete list of CMP display filter fields can be found in the [http://www.ethereal.com/docs/dfref/protofirstletter/proto.html display filter reference] A complete list of CMP display filter fields can be found in the [http://www.ethereal.com/docs/dfref/c/cmp.html display filter reference]
Line 44: Line 44:
 * add link to PROTO specification and where to find additional info on the web about it, e.g.:
* [http://www.ietf.org/rfc/rfc2510.txt RFC 2510] ''Internet X.509 Public Key Infrastructure Certificate Management Protocols'' - It has been replaced by [http://www.ietf.org/rfc/rfc4210.txt RFC 4210] which doesn't address transport issues.
  * [http://www.ietf.org/rfc/rfc2510.txt RFC 2510] ''Internet X.509 Public Key Infrastructure Certificate Management Protocols'' - It has been replaced by [http://www.ietf.org/rfc/rfc4210.txt RFC 4210] which doesn't address transport issues.

Certificate Management Protocol (CMP)

CMP is a protocol for managing Public Key Infrastrictures (PKI) based on X.509v3 certificates. Protocol messages are defined for certificate creation and management. It is used by commercial PKI products as Entrust Security Manager and Unicert

History

TODO:

Protocol dependencies

  • ["TCP"]: CMP can use ["TCP"] or ["HTTP"] as its transport protocol. The well known TCP port for CMP traffic is 829.

Example traffic

TODO: Add example traffic here (as plain text or Ethereal screenshot).

Ethereal

TODO:

Preference Settings

TODO:.

Example capture file

  • attachment:SampleCaptures/cmp-trace.pcap.gz CMP certificate requests

Display Filter

A complete list of CMP display filter fields can be found in the [http://www.ethereal.com/docs/dfref/c/cmp.html display filter reference]

  • Show only the CMP based traffic:

     cmp 

Capture Filter

You cannot directly filter CMP protocol while capturing. However, if you know the ["TCP"] port used (see above), you can filter on that one.

  • Capture only the CMP traffic over the default port (829):

     tcp port 829 

Discussion

CMP (last edited 2013-02-16 10:47:51 by LTejas)