Liaison statement
LS on the establishment of a new work item, ITU-T X.rs-certi: Framework for security assessment of server certificate in application
Additional information about IETF liaison relationships is available on the
IETF webpage
and the
Internet Architecture Board liaison webpage.
| State | Posted |
|---|---|
| Submitted Date | 2025-05-01 |
| From Group | ITU-T-SG-17 |
| From Contact | Xiaoya Yang |
| To Group | lamps |
| To Contacts | Russ Housley <housley@vigilsec.com> Tim Hollebeek <tim.hollebeek@digicert.com> |
| Cc | Limited Additional Mechanisms for PKIX and SMIME Discussion List <spasm@ietf.org> Russ Housley <housley@vigilsec.com> Tim Hollebeek <tim.hollebeek@digicert.com> Deb Cooley <debcooley1@gmail.com> Scott Mansfield <Scott.Mansfield@Ericsson.com> Paul Wouters <paul.wouters@aiven.io> itu-t liaison <itu-t-liaison@iab.org> |
| Response Contact | arnaud.taddei@broadcom.com zoesc.park@sch.ac.kr zhangchen@cmdi.chinamobile.com |
| Purpose | For information |
| Attachments | sp18-sg17-oLS-00020 |
| Body |
Abstract: This liaison statement informs ITU-T SG13 & SG11, IETF PKIX & LAMPS & ACME, and CA/Browser Forum about the establishment of a new work item, X.rs-certi: Framework for risk assessment of server certificate in application. ITU-T Study Group 17 informs ITU-T SG13 & SG11, IETF PKIX & LAMPS & ACME, and CA/Browser Forum about the establishment of a new work item, ITU-T X.rs-certi, “Framework for risk assessment of server certificate in application”. This new work item has been initiated at the ITU-T Study Group 17 plenary on 17 April 2025. Scope This draft Recommendation specifies the framework for risk assessment of server certificate in application, including the functional architecture, requirements and methodologies. This draft Recommendation serves to mainly analyses and notify the risk status of the applied certificate from the perspective of the operational security of certificate subscribers. ITU-T SG17 will keep close collaboration with ITU-T SG13 & SG11, IETF PKIX & LAMPS & ACME, CA/Browser Forum and exchange information on risk assessment of server certificate in application related activities. |