1 / 12

Overview of the PKIX Working Group and Recent Developments (August 2004)

The PKIX Working Group, focusing on the X.509 Public Key Infrastructure, convened on August 4, 2004, to discuss progress and upcoming documents. Key topics included the review of new RFCs, presentations on OCSP in IKEv2, and updates on the Subject Identification Method. The mailing list and charter details are available online, and contact information for group chairs Stephen Kent and Tim Polk is provided. The group aims for completion of various documents by Fall 2005, with significant emphasis on securing authentication in networking environments.

tara-pickett
Télécharger la présentation

Overview of the PKIX Working Group and Recent Developments (August 2004)

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Public Key Infrastructure Using X.509 (PKIX) Working Group August 4, 2004 0900-1130

  2. PKIX WG (pkix-wg) • Web page: charter, current documents • http://www.ietf.org/html.charters/pkix-charter.html • Mailing List:ietf-pkix@imc.org • To Subscribe: ietf-pkix-request@ imc.org, In Body: subscribe • Archive: http://www.imc.org/ietf-pkix • Chairs • Stephen Kent kent@bbn.com • Tim Polk tim.polk@nist.gov • Security Area Directors • Russ Housley housley@vigilsec.com • Steve Bellovin bellovin@acm.org

  3. Document Status Review • WG document presentations • LDAP document suite • SCVP • Matching Text Strings in PKIX • RFC3280bis • Subject Identification Method • Liasion Presentations • OCSP in IKE V2 • User Interface for PKI

  4. Status Review • 4 New RFCs • 4 Documents Approved by IESG • 5 Documents with AD • 4+ Documents projected completion Fall 2005 • 3 Documents projected completion Spring 2005

  5. Four New RFCs • RFC 3739, Qualified Certificates Profile • RFC 3770 Certificate Extensions and Attributes Supporting Authentication in PPP and Wireless LAN • RFC 3779, X.509 Extensions for IP Addresses and AS Identifiers • RFC 3820, Internet X.509 Public Key Infrastructure Proxy Certificate Profile

  6. 4 IDs Approved by IESG • In RFC Editors Queue • CRMF • SHA-224 • Announcement Sent • Warranty Extension • Announcement Sent, Revised ID Needed • PKALgs

  7. 5 Documents With ADs • Cert Path Building • AC Policies • Permanent Identifier • PKIX Repository • CMP

  8. Projected Completion by November meeting • In WG Last Call • SCVP • CertStore • Ready for Last Call • ECC (NIST Curves) • Almost Ready for Last Call • Subject Identification Method • LDAP document suite

  9. SCVP • In WG Last Call • New Draft submitted just before Minneapolis • Next draft will complete resolution of WG Last Call comments and will be forwarded to AD • Timeline • One more draft in 2004 • Forward to ADs by end of March 2004

  10. ECC “NIST Curves” • Technically complete • Timeline • 2 week WG Last Call after 60th IETF closes • Forward to ADs as standards track submission (in line with 3279) by September 2004

  11. Subject Identification Method • New draft posted in July • Resolved most of the comments posted to list • One more draft needed to resolve 4 open issues • Proposed Timeline • New draft August 2004 • WG Last Call September 2004

  12. Projected Completion Spring 2005 • Progression of 3279/3280 • Processing Text Strings • OCSPv2 extensions

More Related