{"draft":"draft-ietf-pkix-proxy-10","doc_id":"RFC3820","title":" Internet X.509 Public Key Infrastructure (PKI) Proxy Certificate Profile ","authors":["S. Tuecke","V. Welch","D. Engert","L. Pearlman","M. Thompson"],"format":["ASCII","HTML"],"page_count":"37","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Public-Key Infrastructure (X.509)","abstract":" This document forms a certificate profile for Proxy Certificates, based on X.509 Public Key Infrastructure (PKI) certificates as defined in RFC 3280, for use in the Internet.  The term Proxy Certificate is used to describe a certificate that is derived from, and signed by, a normal X.509 Public Key End Entity Certificate or by another Proxy Certificate for the purpose of providing restricted proxying and delegation within a PKI based authentication system.  [STANDARDS-TRACK]","pub_date":"May 2004","keywords":["X.509","PKI","Public Key Infrastructure","authentication","security credentials","restricted delegation","single-signon","delegation of rights"],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC3820","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc3820"}