@techreport{ietf-pkix-okid-01,
    number =    {draft-ietf-pkix-okid-01},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-ietf-pkix-okid/01/},
    author =    {Paul E. Hoffman},
    title =     {{Out-of-Band Certificate and Key Identifier Protocol (OCKID)}},
    pagetotal = 0,
    year =      2002,
    month =     feb,
    day =       28,
    abstract =  {In general, certificates need not be communicated with communication or storage media that are integrity-secure or authentic. This is because certificates are digitally signed and users are expected to validate the signatures using configured trust anchors. However, distribution of trust anchor certificates, self-signed end-entity certificates, or bare (unsigned) public keys requires a mechanism for establishing the authenticity of the certificate or public key.},
}