The #KMIP TC publishes 11 Committee Specifications and 2 Committee Notes

OASIS is pleased to announce the approval and publication of new Committee Specifications and Committee Notes by the members of the OASIS Key Management Interoperability Protocol (KMIP) TC:

Key Management Interoperability Protocol Specification Version 1.2
Committee Specification 01
11 November 2014

Key Management Interoperability Protocol Profiles Version 1.2
Committee Specification 01
11 November 2014

KMIP Additional Message Encodings Version 1.0
Committee Specification 01
11 November 2014

KMIP Storage Array with Self-Encrypting Drives Profile Version 1.0
Committee Specification 01
11 November 2014

KMIP Symmetric Key Lifecycle Profile Version 1.0
Committee Specification 01
11 November 2014

KMIP Asymmetric Key Lifecycle Profile Version 1.0
Committee Specification 01
11 November 2014

KMIP Cryptographic Services Profile Version 1.0
Committee Specification 01
11 November 2014

KMIP Symmetric Key Foundry for FIPS 140-2 Profile Version 1.0
Committee Specification 01
11 November 2014

KMIP Tape Library Profile Version 1.0
Committee Specification 01
11 November 2014

KMIP Suite B Profile Version 1.0
Committee Specification 01
11 November 2014

KMIP Opaque Managed Object Store Profile Version 1.0
Committee Specification 01
11 November 2014

Key Management Interoperability Protocol Usage Guide Version 1.2
Committee Note 01
11 November 2014

Key Management Interoperability Protocol Test Cases Version 1.2
Committee Note 01
11 November 2014

Overview:

These documents are intended for developers and architects who wish to design systems and applications that interoperate using the Key Management Interoperability Protocol Specification.

KMIP v1.2 enhances the KMIP v1.1 standard (established in February 2013) by:

1) defining new functionality in the protocol to improve interoperability;

2) defining additional Test Cases for verifying and validating the new functionality;

3) providing additional information in the KMIP Usage Guide to assist in effective implementation of KMIP in key management clients and servers; and

4) defining new profiles for establishing KMIP-compliant implementations.

The Key Management Interoperability Protocol (KMIP) is a single, comprehensive protocol for communication between clients that request any of a wide range of encryption keys and servers that store and manage those keys. By replacing redundant, incompatible key management protocols, KMIP provides better data security while at the same time reducing expenditures on multiple products.

These documents are intended for developers and architects who wish to design systems and applications that interoperate using the Key Management Interoperability Protocol Specification.

- Key Management Interoperability Protocol Specification Version 1.2 provides the core specification.

- Key Management Interoperability Protocol Profiles Version 1.2 define a set of normative constraints for employing KMIP within a particular environment or context of use. They may, optionally, require the use of specific KMIP functionality or in other respects define the processing rules to be followed by profile actors.

- KMIP Additional Message Encodings Version 1.0 describes additional (optional) message encodings as an alternative to the (mandatory) raw TTLV encoding including: HTTP, JSON, and XML.

- KMIP Storage Array with Self-Encrypting Drives Profile Version 1.0 describes a profile for Storage Arrays with Self-Encrypting Drives as KMIP clients interacting with KMIP servers.

- KMIP Symmetric Key Lifecycle Profile Version 1.0 describes a profile for a KMIP server performing symmetric key lifecycle operations based on requests received from a KMIP client.

- KMIP Tape Library Profile Version 1.0 describes a profile for Tape Libraries as KMIP clients interacting with KMIP servers.

- KMIP Cryptographic Services Profile Version 1.0 describes the use of KMIP operations to support cryptographic services being performed by a KMIP server on behalf of a KMIP client for key management operations.

- KMIP Asymmetric Key Lifecycle Profile Version 1.0 describes a profile for a KMIP server performing asymmetric key lifecycle operations based on requests received from a KMIP client.

- KMIP Symmetric Key Foundry for FIPS 140-2 Profile Version 1.0 describes a profile for a KMIP server creating FIPS140-2 approved symmetric key algorithms based on requests received from a KMIP client.

- KMIP Opaque Managed Object Store Profile Version 1.0 describes a profile for a KMIP server performing opaque managed object storage operations based on requests received from a KMIP client.

- KMIP Suite B Profile Version 1.0 describes a profile for KMIP clients and KMIP servers using Suite B cryptography that has been approved by NIST for use by the U.S. Government and specified in NIST standards or recommendations.

- Key Management Interoperability Protocol Usage Guide Version 1.2 is intended to complement the Key Management Interoperability Protocol Specification by providing guidance on how to implement KMIP most effectively to ensure interoperability and to address key management usage scenarios.

- Key Management Interoperability Protocol Test Cases Version 1.2 is intended for developers and architects who wish to design systems and applications that interoperate using the Key Management Interoperability Protocol specification.

URIs:
The prose specifications and related files are available here:

- Key Management Interoperability Protocol Specification Version 1.2

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/spec/v1.2/cs01/kmip-spec-v1.2-cs01.doc

HTML:
http://docs.oasis-open.org/kmip/spec/v1.2/cs01/kmip-spec-v1.2-cs01.html

PDF:
http://docs.oasis-open.org/kmip/spec/v1.2/cs01/kmip-spec-v1.2-cs01.pdf

- Key Management Interoperability Protocol Profiles Version 1.2

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/profiles/v1.2/cs01/kmip-profiles-v1.2-cs...

HTML:
http://docs.oasis-open.org/kmip/profiles/v1.2/cs01/kmip-profiles-v1.2-cs...

PDF:
http://docs.oasis-open.org/kmip/profiles/v1.2/cs01/kmip-profiles-v1.2-cs...

- KMIP Additional Message Encodings Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-addtl-msg-enc/v1.0/cs01/kmip-addtl-...

HTML:
http://docs.oasis-open.org/kmip/kmip-addtl-msg-enc/v1.0/cs01/kmip-addtl-...

PDF:
http://docs.oasis-open.org/kmip/kmip-addtl-msg-enc/v1.0/cs01/kmip-addtl-...

- KMIP Storage Array with Self-Encrypting Drives Profile Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-sa-sed-profile/v1.0/cs01/kmip-sa-se...

HTML:
http://docs.oasis-open.org/kmip/kmip-sa-sed-profile/v1.0/cs01/kmip-sa-se...

PDF:
http://docs.oasis-open.org/kmip/kmip-sa-sed-profile/v1.0/cs01/kmip-sa-se...

- KMIP Symmetric Key Lifecycle Profile Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-sym-key-profile/v1.0/cs01/kmip-sym-...

HTML:
http://docs.oasis-open.org/kmip/kmip-sym-key-profile/v1.0/cs01/kmip-sym-...

PDF:
http://docs.oasis-open.org/kmip/kmip-sym-key-profile/v1.0/cs01/kmip-sym-...

- KMIP Asymmetric Key Lifecycle Profile Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-asym-key-profile/v1.0/cs01/kmip-asy...

HTML:
http://docs.oasis-open.org/kmip/kmip-asym-key-profile/v1.0/cs01/kmip-asy...

PDF:
http://docs.oasis-open.org/kmip/kmip-asym-key-profile/v1.0/cs01/kmip-asy...

- KMIP Cryptographic Services Profile Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-cs-profile/v1.0/cs01/kmip-cs-profil...

HTML:
http://docs.oasis-open.org/kmip/kmip-cs-profile/v1.0/cs01/kmip-cs-profil...

PDF:
http://docs.oasis-open.org/kmip/kmip-cs-profile/v1.0/cs01/kmip-cs-profil...

- KMIP Symmetric Key Foundry for FIPS 140-2 Profile Version 1.0

Editable Source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-sym-foundry-profile/v1.0/cs01/kmip-...

HTML:
http://docs.oasis-open.org/kmip/kmip-sym-foundry-profile/v1.0/cs01/kmip-...

PDF:
http://docs.oasis-open.org/kmip/kmip-sym-foundry-profile/v1.0/cs01/kmip-...

- KMIP Tape Library Profile Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-tape-lib-profile/v1.0/cs01/kmip-tap...

HTML:
http://docs.oasis-open.org/kmip/kmip-tape-lib-profile/v1.0/cs01/kmip-tap...

PDF:
http://docs.oasis-open.org/kmip/kmip-tape-lib-profile/v1.0/cs01/kmip-tap...

- KMIP Suite B Profile Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-suite-b-profile/v1.0/cs01/kmip-suit...

HTML:
http://docs.oasis-open.org/kmip/kmip-suite-b-profile/v1.0/cs01/kmip-suit...

PDF:
http://docs.oasis-open.org/kmip/kmip-suite-b-profile/v1.0/cs01/kmip-suit...

- KMIP Opaque Managed Object Store Profile Version 1.0

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/kmip-opaque-obj-profile/v1.0/cs01/kmip-o...

HTML:
http://docs.oasis-open.org/kmip/kmip-opaque-obj-profile/v1.0/cs01/kmip-o...

PDF:
http://docs.oasis-open.org/kmip/kmip-opaque-obj-profile/v1.0/cs01/kmip-o...

- Key Management Interoperability Protocol Usage Guide Version 1.2

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/ug/v1.2/cn01/kmip-ug-v1.2-cn01.doc

HTML:
http://docs.oasis-open.org/kmip/ug/v1.2/cn01/kmip-ug-v1.2-cn01.html

PDF:
http://docs.oasis-open.org/kmip/ug/v1.2/cn01/kmip-ug-v1.2-cn01.pdf

- Key Management Interoperability Protocol Test Cases Version 1.2

Editable source (Authoritative):
http://docs.oasis-open.org/kmip/testcases/v1.2/cn01/kmip-testcases-v1.2-...

HTML:
http://docs.oasis-open.org/kmip/testcases/v1.2/cn01/kmip-testcases-v1.2-...

PDF:
http://docs.oasis-open.org/kmip/testcases/v1.2/cn01/kmip-testcases-v1.2-...

Distribution ZIP file

For your convenience, OASIS provides complete packages of the prose specifications and related files in ZIP distribution files. You can download the ZIP files here:

- Key Management Interoperability Protocol Specification Version 1.2:
http://docs.oasis-open.org/kmip/spec/v1.2/cs01/kmip-spec-v1.2-cs01.zip

- Key Management Interoperability Protocol Profiles Version 1.2:
http://docs.oasis-open.org/kmip/profiles/v1.2/cs01/kmip-profiles-v1.2-cs...

- KMIP Additional Message Encodings Version 1.0:
http://docs.oasis-open.org/kmip/kmip-addtl-msg-enc/v1.0/cs01/kmip-addtl-...

- KMIP Storage Array with Self-Encrypting Drives Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-sa-sed-profile/v1.0/cs01/kmip-sa-se...

- KMIP Symmetric Key Lifecycle Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-sym-key-profile/v1.0/cs01/kmip-sym-...

- KMIP Asymmetric Key Lifecycle Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-asym-key-profile/v1.0/cs01/kmip-asy...

- KMIP Cryptographic Services Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-cs-profile/v1.0/cs01/kmip-cs-profil...

- KMIP Symmetric Key Foundry for FIPS 140-2 Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-sym-foundry-profile/v1.0/cs01/kmip-...

- KMIP Tape Library Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-tape-lib-profile/v1.0/cs01/kmip-tap...

- KMIP Suite B Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-suite-b-profile/v1.0/cs01/kmip-suit...

- KMIP Opaque Managed Object Store Profile Version 1.0:
http://docs.oasis-open.org/kmip/kmip-opaque-obj-profile/v1.0/cs01/kmip-o...

- Key Management Interoperability Protocol Usage Guide Version 1.2:
http://docs.oasis-open.org/kmip/ug/v1.2/cn01/kmip-ug-v1.2-cn01.zip

- Key Management Interoperability Protocol Test Cases Version 1.2:
http://docs.oasis-open.org/kmip/testcases/v1.2/cn01/kmip-testcases-v1.2-...

Members of the OASIS Key Management Interoperability Protocol (KMIP) TC [1] approved these specifications and notes by Special Majority Votes. The documents had been released for public review as required by the TC Process [2]. The votes to approve as Committee Specifications and Notes passed [3], and the documents are now available online in the OASIS Library as referenced above.

Our congratulations to the TC on achieving this milestone and our thanks to the reviewers who provided feedback on the specification drafts to help improve the quality of the work.

========== Additional references:

[1] OASIS Key Management Interoperability Protocol (KMIP) TC
https://www.oasis-open.org/committees/kmip/

[2] Public reviews:
- 30-day public review, 19 February 2014:
https://lists.oasis-open.org/archives/tc-announce/201402/msg00008.html
- Comment resolution log (master log copied to each csprd directory):
http://docs.oasis-open.org/kmip/spec/v1.2/csprd01/KMIP-v1.2-csprd01-pub-...

- 30-day public review, Key Management Interoperability Protocol Profiles
Version 1.2, 07 April 2014:
https://lists.oasis-open.org/archives/tc-announce/201404/msg00000.html
- Comment resolution log:
http://docs.oasis-open.org/kmip/profiles/v1.2/csprd01/KMIP-v1.2-csprd01-...

- 15-day public review, 09 September 2014: https://lists.oasis-open.org/archives/members/201409/msg00002.html
- Comment resolution log (master log copied to each csprd directory): http://docs.oasis-open.org/kmip/kmip-sym-key-profile/v1.0/csprd02/kmip-s...

[3] Approval ballots:

- Key Management Interoperability Protocol Specification Version 1.2: https://www.oasis-open.org/committees/ballot.php?id=2692

- Key Management Interoperability Protocol Profiles Version 1.2: https://www.oasis-open.org/committees/ballot.php?id=2693

- KMIP Additional Message Encodings Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2694

- KMIP Symmetric Key Lifecycle Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2696

- KMIP Asymmetric Key Lifecycle Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2699

- KMIP Storage Array with Self-Encrypting Drives Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2695

- KMIP Tape Library Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2697

- KMIP Suite B Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2703

- KMIP Opaque Managed Object Store Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2701

- KMIP Symmetric Key Foundry for FIPS 140-2 Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2700

- KMIP Cryptographic Services Profile Version 1.0: https://www.oasis-open.org/committees/ballot.php?id=2698

- Key Management Interoperability Protocol Usage Guide Version 1.2: https://www.oasis-open.org/committees/ballot.php?id=2705

- Key Management Interoperability Protocol Test Cases Version 1.2: https://www.oasis-open.org/committees/ballot.php?id=2704

Associated TC: 
Key Management Interoperability Protocol (KMIP)
Associated MS: 
IDtrust