2.1 Transport

The One-Time Password Certificate Enrollment Protocol does not provide its own secure transport. It MUST be transmitted over a secured channel, for example, Hypertext Transfer Protocol over Secure Sockets Layer (HTTPS), as specified in [RFC2818].

This protocol is encapsulated within and depends on HTTP, as specified in [RFC2616], for delivery of messages. The protocol does not impose any message retransmissions or other requirements on this transport.