Liaison statement
Response to "Solicitation of interest in ITU-T SG 17 initiative on business use of telecommunications/ICT security standards"

Submission date 2009-05-22
From IETF SEC AREA (Pasi Eronen)
To ITU-T SG 17 (
Cc Scott Bradner, Georges Sebek, Arkadiy Kremer, Antonio Guimaraes, Patrick Mwesigwa,
Purpose In response
Attachments (None)
The Internet Engineering Task Force (IETF) Security Area would like to 
thank ITU-T Study Group 17 for the opportunity to comment on the new 
activity, "Business use of telecommunications/ICT security standards".

The IETF has developed a number of security standards that could be
included in this document based on the Study Group's proposed
criteria.  An initial list is provided below (in alphabetical order):

* Cryptographic Message Syntax (CMS)
* DNS Security (DNSSEC)
* DomainKeys Identified Mail (DKIM)
* Extensible Authentication Protocol (EAP) framework and 
  authentication methods
* Generic Security Service Application Program Interface (GSS-API) 
  framework and mechanisms
* HTTP authentication mechanisms and HTTP cookies
* IPsec
* Internet X.509 Public Key Infrastructure (PKIX) certificate 
  profiles and protocols
* Kerberos
* Lightweight Directory Access Protocol (LDAP) 
* Remote Authentication Dial In User Service (RADIUS) and Diameter
* S/MIME and OpenPGP 
* Secure Real-time Transport Protocol (SRTP)
* Secure Shell (SSH)
* Simple Authentication and Security Layer (SASL) framework and mechanisms
* Transport Layer Security (TLS)

The IETF Security Area does not have the resources to directly support
this activity, but IETF protocol experts may be willing to assist in
the development of summary sheets for specific protocols.  We would
invite Study Group 17 to contact the IETF Working Group responsible
for the protocol for assistance if required.