EST - Enrollment over Secure Transport (RFC 7030)

EST provides HTTPS-based certificate enrollment over TLS, using mutual authentication or TLS with certificate-less client authentication to establish a secure channel before PKCS#10 enrollment. EST targets modern HTTPS-capable IoT and network devices that need simpler deployment than CMP but more secure transport than SCEP.