About

The OASIS Identity and Trusted Infrastructure (IDtrust) Member Section promotes greater understanding and adoption of standards-based identity and trusted infrastructure technologies, policies, and practices. The group provides a neutral setting where government agencies, companies, research institutes, and individuals work together to advance the use of trusted infrastructures, including the Public Key Infrastructure (PKI).

IDtrust was founded in 1999 as PKI Forum. It transitioned its work to the international standards consortium, OASIS, in 2002, where it continued to operate as an independent body focused on broadening adoption for PKI. In 2007, the group expanded its charter and was renamed the OASIS IDtrust Member Section.

Strategic focus

The work of the OASIS IDtrust Member Section focuses on four key areas:

Identity and Trusted Infrastructure components, such as cataloguing and carrying out studies and projects addressing technology-based Identity and Trust models and standards, including those that are PKI-based as well as those utilizing other security mechanisms; relevant protocols and standards; trust infrastructures in use; and costs, benefits and risk management issues.

Identity and Trust Policies and Enforcement, including policies and policy issues; policy mapping and standardization; assurance; technical validation mechanisms; and trust path building and validation.

Education and Outreach: documenting trust use cases and business case scenarios, best practices and adoption reports and papers; organizing conferences and workshops; and establishing Web-based resources.

Barriers and Emerging Issues associated with Identity and Trusted Infrastructures, including data privacy issues; interoperability; cross border/ organizational trust; outsourcing; cryptographic issues; application integration; and international issues.

FAQ

Find answers to these frequently asked questions on IDtrust.

What is the OASIS IDtrust Member Section?

IDtrust is an independent group that works under the open process of the OASIS international standards consortium. IDtrust members collaborate to advance the use of trusted infrastructures, including the Public Key Infrastructure (PKI). IDtrust operates as part of the OASIS Member Section program.

Who are the members of IDtrust?

IDtrust members represent all serious stakeholders in identity and trusted infrastructures from both the public and private sectors. Software, hardware, and services providers, user companies, government agencies, systems integrators, the legal and audit community, and many others are involved in this work. Everyone is welcome to join, and anyone employed by an existing OASIS member may participate in IDtrust without additional dues or cost.

What kinds of activities does IDtrust undertake?

The OASIS IDtrust Member Section focuses on advancing adoption and deployment of identity and trusted infrastructures through education and facilitation. The group develops interoperability profiles and champions product interoperability demonstrations to ensure that products are certified against those profiles. It provides an international forum for discussing issues, sharing solutions, and developing white papers and other deliverables that address identity and trusted infrastructures from several perspectives:

  • business and security needs
  • technical interoperability
  • enabling business applications
  • increasing awareness of available solutions, applications, and successful deployment

The OASIS IDtrust Member Section coordinates its activities with related OASIS security efforts and with external organizations.

How long has the OASIS IDtrust Member Section been serving the community?

The organization has its roots in PKI Forum, which was founded in 1999 as an alliance of vendors and users dedicated to supporting PKI as a foundation for e-business. PKI Forum began formal operations in early 2000 and transitioned to become the OASIS PKI Member Section in November 2002. The group expanded its charter in 2007 under the new name, IDtrust.

Does IDtrust encourage open participation?

OASIS believes widespread adoption can only be achieved when all those affected by a standard participate in its creation. The consortium offers a range of membership levels that support an inclusive, international, and balanced member base. Archives of all OASIS IDtrust Member Section and committee documents and emails are publicly accessible.

What are the group's operating policies?

IDtrust operates under the OASIS IDtrust Member Section Rules of Procedure. The Member Section is subject to the OASIS Bylaws, Member Section Policy, IPR Policy, Technical Committee Process and other policies and procedures.

How is the OASIS IDtrust Member Section governed?

IDtrust activities are managed by a Steering Committee that consists of five seats. Steering Committee representatives are nominated and elected by the IDtrust membership in an open process. The selection of the Steering Committee is based on individual merit and is not tied to financial contribution, corporate standing, or special appointment.

What are identification and trusted infrastructure standards?

This term applies to standards that provide the basic security required to carry out electronic business so that parties who do not know each other or are widely distributed can communicate securely using a chain of trust. The field encompasses several technology-based identity and trust models and standards, including those that are PKI-based as well as those utilizing other security mechanisms. More information on these standards can found on the IDtrust XML.org community web site.

Milestones

24 May 2007
OASIS Issues Press Release on IDtrust Member Section, announcing Steering Committee and Members

6 Mar 2007
OASIS Forms Identity and Trusted Infrastructure (IDtrust) Member Section

16 Jan 2007
OASIS Enterprise Key Management Infrastructure (EKMI) Technical Committee Holds First Meeting

07 Jan 2003
OASIS Members Form Technical Committee to Advance PKI Adoption for Secure Transactions

4 Nov 2002
OASIS Expands to Include PKI Forum: Security Alliance Moves Adoption Agenda to International Consortium

15 Mar 2000
PKI Forum Holds Inaugural Members Meeting: Rapid Membership Growth Reported

13 Dec 1999
Baltimore Technologies, Entrust, IBM, Microsoft and RSA Security Announce Formation of PKI Forum