Trust Anchor Management Problem Statement

Document Type Expired Internet-Draft (individual)
Author Carl Wallace 
Last updated 2007-09-12 (latest revision 2007-07-08)
Stream (None)
Expired & archived
pdf htmlized bibtex
Additional Resources
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document provides a problem statement for the Trust Anchor Management Birds of a Feather (BOF). A trust anchor represents an authoritative entity via a public key and associated data. The public key is used to verify digital signatures and the associated data is used to constrain the types of information for which the trust anchor is authoritative. Relying parties use trust anchors to determine if digitally signed objects are valid by verifying digital signatures using the trust anchor's public key and by enforcing the constraints expressed in the associated data. This document describes some of the problems associated with the lack of a standard trust anchor management mechanism as well as problems that must be addressed by such a mechanism.


Carl Wallace (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)