HTTP Developer’s Handbook

Cryptographic Message Syntax

Cryptographic Message Syntax, CMS, is basically a message format for cryptographically securing data. Secure HTTP integrates the CMS format with standard HTTP to achieve much of its strength. The CMS specification is RFC 2630, and this specification is a good resource for exploring the format further.

Secure HTTP uses two of the available content types in CMS:

EnvelopedData 
SignedData

EnvelopedData is basically encrypted data that is contained within a wrapper. The data itself is encrypted using symmetric key cryptography. Although the specification allows for several methods of distributing the symmetric key, the most popular method (as with SSL) is asymmetric cryptography, most often called public key cryptography. ...

Get HTTP Developer’s Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

HTTP Developer’s Handbook by Chris Shiflett

Cryptographic Message Syntax

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly