Liaison statement
LS on the establishment of a new work item Technical Report TR.PKIC-man-ib;Localized management framework of trusted Web PKI certificate supporting fine-grained configuration and technical guidelines for Web PKI certificate validation for Internet browser
Additional information about IETF liaison relationships is available on the
IETF webpage
and the
Internet Architecture Board liaison webpage.
| State | Posted |
|---|---|
| Submitted Date | 2025-04-24 |
| From Group | ITU-T-SG-17 |
| From Contact | itu-t liaison |
| To Group | lamps |
| To Contacts | Russ Housley <housley@vigilsec.com> Tim Hollebeek <tim.hollebeek@digicert.com> |
| Cc | Limited Additional Mechanisms for PKIX and SMIME Discussion List <spasm@ietf.org> Russ Housley <housley@vigilsec.com> Deb Cooley <debcooley1@gmail.com> Paul Wouters <paul.wouters@aiven.io> Scott Mansfield <Scott.Mansfield@Ericsson.com> Tim Hollebeek <tim.hollebeek@digicert.com> itu-t liaison <itu-t-liaison@iab.org> |
| Response Contact | arnaud.taddei@broadcom.com zoesc.park@sch.ac.kr zhangchen@cmdi.chinamobile.com |
| Purpose | For information |
| Attachments | sp18-sg17-oLS-00017 |
| Body |
Abstract: This liaison statement informs IETF PKIX & LAMPS, and CA/Browser Forum about the establishment of a new work item, TR.PKIC-man-ib: Localized management framework of trusted Web PKI certificate supporting fine-grained configuration and technical guidelines for Web PKI certificate validation for Internet browser. ITU-T Study Group 17 informs IETF PKIX & LAMPS, and CA/Browser Forum about the establishment of a new work item, Technical Report TR.PKIC-man-ib: Localized management framework of trusted Web PKI certificate supporting fine-grained configuration and technical guidelines for Web PKI certificate validation for Internet browser. Scope This technical report aims to provide the technical guide for website server verification in Internet browser digital certificate verification, including the basic path verification process, as well as the reference procedures, guidance and suggestions for input, initialization, basic certificate processing, etc. in the verification process. This technical report also aims to provide a framework and requirements for trusted Web PKI certificate supporting localized management and configuration for Internet browser. This technical report specifies the technical requirements for localized management of digital certificate resources in internet browsers, including the format requirements for localized management files of digital certificate resources, and provides the verification mechanism and procedure for digital certificates based on localized management files of digital certificate resources in browsers. This technical report is applicable to the design, development and application of Internet browsers. In specific, the scope includes: - The basic path verification process for Interent browser - Instructions for using basic path verification algorithms in specific implementations - The high-level framework of localized management of digital certificate resources in internet browsers - The technical requirements, including the localized management specification of base functional elements, mechanism and procedures - Security considerations ITU-T SG17 will keep close collaboration with IETF PKIX, LAMPS, and CA/Browser Forum and exchange information on risk assessment of server certificate in application related activities. |