A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Public Notary Transparency of the IETF.
Title : Attack and Threat Model for Certificate Transparency
Author : Stephen Kent
Filename : draft-ietf-trans-threat-analysis-09.txt
Pages : 30
Date : 2016-09-20
This document describes an attack model and discusses threats for the
Web PKI context in which security mechanisms to detect mis-issuance
of web site certificates are being developed. The model provides an
analysis of detection and remediation mechanisms for both syntactic
and semantic mis-issuance. The model introduces an outline of
attacks to organize the discussion. The model also describes the
roles played by the elements of the Certificate Transparency (CT)
system, to establish a context for the model.
The IETF datatracker status page for this draft is:
There's also a htmlized version available at:
A diff from the previous version is available at:
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
Trans mailing list