SID-TRUST-02 — Multi-Registry Trust Framework Support
| Property | Value |
|---|---|
| Status | verified |
| Owner | platform |
| Category | technical |
| CSF Function | identify |
| Group | Trust Evaluation Controls |
Description
Trust evaluation across 5 registry types:
- ETSI TSL (TS 119 612) — Trust Status Lists with PEM bundles
- OpenID Federation — Trust chain resolution with trust marks
- mDOC IACA — ISO 18013-5 Document Signer certificate validation
- did:web — W3C DID Document key binding resolution
- LoTE (TS 119 602) — List of Trusted Entities with JWS verification
Per-registry-type policy constraints for OIDF trust marks, ETSI service types, DID domain allowlists, mDOC IACA allowlists.
Components
- Trust Service (AuthZEN)
Source References
go-trust/registry/etsi/go-trust/registry/oidfed/go-trust/registry/mdociaca/go-trust/registry/didweb/go-trust/registry/lote/
Audit Findings
| Finding | Severity | Status |
|---|---|---|
| EN-P-8 — Partial trust list freshness and status checking | medium | in progress |
| ISO-O-9 — Partial threat intelligence coverage | medium | open |