[wpkops] X.509 whitelist proposal

Tony Rutkowski <tony@yaanatech.com> Thu, 17 July 2014 22:50 UTC

Return-Path: <tony@yaanatech.com>
X-Original-To: wpkops@ietfa.amsl.com
Delivered-To: wpkops@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DEB181B2801; Thu, 17 Jul 2014 15:50:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KcnqeBk40Nrv; Thu, 17 Jul 2014 15:50:01 -0700 (PDT)
Received: from extmail1.yaanatech.com (extmail1.yaanatech.com [63.128.177.51]) by ietfa.amsl.com (Postfix) with SMTP id DB29A1B2803; Thu, 17 Jul 2014 15:50:00 -0700 (PDT)
Received: from [192.168.1.51] (pool-71-171-106-160.clppva.fios.verizon.net [71.171.106.160]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by extmail1.yaanatech.com (Postfix) with ESMTP id 870F658096; Thu, 17 Jul 2014 22:51:22 +0000 (UTC)
Message-ID: <53C85314.3040102@yaanatech.com>
Date: Thu, 17 Jul 2014 18:49:56 -0400
From: Tony Rutkowski <tony@yaanatech.com>
Organization: Yaana Technologies
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: stephen.farrell@cs.tcd.ie
References: <000b01cfa1bc$b6872ef0$23958cd0$@x500.eu>
In-Reply-To: <000b01cfa1bc$b6872ef0$23958cd0$@x500.eu>
Content-Type: multipart/mixed; boundary="------------040505020204050301090404"
Archived-At: http://mailarchive.ietf.org/arch/msg/wpkops/pl-EvKhgJlsnKY53DPnzs5iRCEo
Cc: pkix@ietf.org, wpkops@ietf.org
Subject: [wpkops] X.509 whitelist proposal
X-BeenThere: wpkops@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tony@yaanatech.com
List-Id: <wpkops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/wpkops>, <mailto:wpkops-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/wpkops/>
List-Post: <mailto:wpkops@ietf.org>
List-Help: <mailto:wpkops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/wpkops>, <mailto:wpkops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Jul 2014 22:50:05 -0000

Hi Steve,

The note below was distributed earlier on the ITU-T SG17
sub-group Q11/17 list by the group's rapporteur.  It might
be useful to gauge industry reaction in IETF and CA/B
Forum venues.

Note that although the document appears on an ITU-T
template, it has not been submitted.   In addition, although
the source is indicated as "Denmark," it is not apparent
that the source is any other than than the rapporteur
himself, who is identified as the contact.  Lastly, although
the note asserts that "IEC TC57 WG15 (smart grid
security) has requested the inclusion of whitelist
support in X.509," there is no apparent liaison to
this effect.

--tony


-------- Original Message --------
Subject: 	[T17Q11] X.509 whitelist support
Date: 	Thu, 17 Jul 2014 14:43:30 +0200
From: 	Erik Andersen <era@x500.eu>
To: 	Directory list <x500standard@freelists.org>, SG17-Q11 
<T13sg17q11@lists.itu.int>
CC: 	SG17-Q10 <t13sg17q10@lists.itu.int>



IEC TC57 WG15 (smart grid security) has requested the inclusion of 
whitelist support in X.509. A preliminary proposal for such a feature 
may be found as 
http://www.x500standard.com/uploads/extensions/whitelistInX509.pdf

The feature may in some way be combined with the trust broker concept, 
which probably will involve a number of changes.

As it is quite important that we have workable solution, any comment is 
welcome. I hope you will find the time to review the proposal before it 
is submitted to ITU-T.

Kind regards,

Erik