Summary

The world is witnessing a massive proliferation of connected devices and services that affect every walk of life. The security threats from this vast, distributed and often unregulated emerging ecosystem of providers of devices and applications are also clear to the world. Recommendation ITU-T Y.3059 defines the requirements that are to be fulfilled by a trust registry that, when supported by the various stakeholders, is likely to create an environment for the sustainable and orderly proliferation of secure devices.

Requirements, an architectural framework for a hierarchy of registries, functional architecture and flows for the registration, interrogation and notification throughout the lifecycle of devices is proposed, with the objective that the trustworthiness of a device can be established at any point in time.