| Task name : |
Defining IALAs Role in MCP Trust Infrastructure
|
| Leading committee and working group owning the task: |
DTEC WG 1 |
| Tasks associated (*leading) : |
|
| Task Leader : |
Thomas Christensen |
|
Task Number
:
|
DTEC-7.1.14 |
| Standards : |
S1070 Information Services |
| Topic area : |
S1070.2 Data exchange systems |
|
Task Description
:
|
This task aims to explore and define IALA’s potential role in the certification framework for Maritime Connectivity Platform (MCP) operational instances, including acting as a certification list holder. The task will consider governance, technical, and procedural aspects to support trust and interoperability within the MCP ecosystem. |
| Objectives of the task : |
To designate IALA as a trusted certificate list holder for the maritime domain and develop relevant guidance documents, specifically supporting secure and trusted identity verification within the MCP and S-200 series frameworks. |
| Expected outcome : |
Revised R1183 and new guideline associated System for trusted list of approved Certificate Authorities (CAs) |
| Compelling need : |
MCP and S-200 data exchanges rely on certificates issued by trusted CAs. There is a need for a central, authoritative registry of those CAs to validate and coordinate secure communications. IALA, already involved in digital maritime efforts, is well positioned to act as the registry holder, fostering global trust and standardization without duplicating CA functions. |
| Strategic Alignment : |
O2 - Develop applicable international standards, recommendations and guidelines for adoption and use by its members and other relevant organizations or parties.
|
| Scope : |
Revise G1183 and new guideline: Update the existing G1183 on MCP identities, and develop associated guideline. Maintain a Trusted CA List: Establish and update a publicly accessible list of recognized Certificate Authorities supporting MCP and S-200. Develop Inclusion Criteria: Define technical and procedural requirements for CAs to be listed. Coordinate with Stakeholders: Collaborate with CAs, MCP implementers, and international bodies to ensure broad trust and alignment. Publish and Update: Regularly verify listed CAs and publish updates in a secure and reliable format. |
| Cybersecurity related : |
|
| Brief and concise description of the work :
to be undertaken and programme mile-stones (where appropriate).
|
Key milestones include: • Define roles, criteria for CA inclusion, and governance framework. • Develop a secure platform to publish and maintain the trusted CA list. • Consult with CAs and begin onboarding verified entities. • Release the first trusted CA list with access guidance. • Regular updates, reviews, and support for list users. |
| Expected numbers of sessions for completion : |
| Session 1 |
Session 2 |
Session 3 |
Session 4 |
Session 5 |
Session 6 |
Session 7 |
|
|
|
|
v |
v |
v |
Meaning of symbols for sessions :
| v |
+ |
x |
> |
< |
| Scheduled |
Progressed |
Not progressed |
Finalised |
On hold |
|
| Committee notes : |
Origins : |
|
|
Approved by Council (Council session/Date) : |
0 |
|
| Notes from the council : |
|
| Status (Text) : |
|
| Status (Colour) : |
Not started
|
| Remarks : |
|
| History of the task : |
2025-03-27 12:27:05 DTECWG1VC1
2025-03-27 12:30:32 DTECWG1VC1
|