The Certificate Management over CMS (CMC) is an Internet Standard published by the IETF, defining transport mechanisms for the Cryptographic Message Syntax (CMS). It is defined in RFC 5272, its transport mechanisms in RFC 5273.

This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these template messages) The topic of this article may not meet Wikipedia's general notability guideline. (November 2017) This article relies excessively on references to primary sources. (November 2017) This article relies largely or entirely on a single source. (November 2017)

Similarly to the Certificate Management Protocol (CMP), it can be used for obtaining X.509 digital certificates in a public key infrastructure (PKI).

CMS is one of two protocols utilizing the Certificate Request Message Format (CRMF), described in RFC 4211, with the other protocol being CMP.

The Enrollment over Secure Transport (EST) protocol, described in RFC 7030, can be seen as a profile of CMC for use in provisioning certificates to end entities. As such, EST can play a similar role to SCEP.

• Certificate Management Protocol (CMP)
• Simple Certificate Enrollment Protocol (SCEP)
• Enrollment over Secure Transport (EST)
• Automated Certificate Management Environment (ACME)