Consortium (W3C) develops
interoperable technologies (specifications, guidelines, software, and tools)
to lead the Web to its full potential. W3C is a forum for information,
commerce, communication, and collective understanding.
X.509 Token Profile 1.1: How to use X.509 Certificates with the Web Services Security: SOAP Message Security specification [WS-Security] specification.
Produced by OASIS Web Services Security TC in february 2006.
Web Services Security X.509 Certificate Token Profile: How to use X.509 Certificates with the Web Services Security: SOAP Message Security specification [WS-Security] specification.
Produced by OASIS Web Services Security TC in march 2004.
x.509 implementation is part of the suite of Web Services Security (WSS) suite describing attachment of security token like "X509SubjectName" in the form of a dn (distinguished name).
Core specification include SOAP messages security describing enhancements to SOAP messaging to provide message integrity and confidentiality. SAML token profile describes how to use Security Assertion Markup Language (SAML) V1.1 and V2.0 assertions with the Web Services Security (WSS): SOAP Message Security V1.1 specification.
x.509 certificates are also part of XML key management (XKMS) By design, the XML Signature Specification does not mandate use of a particular trust policy. The signer of a document is not required to include any key information but may include a <ds:KeyInfo> element that specifies a X.509 certificate. The signer of a document may wish to refer verifiers to a chain of X.509 certificates without having to attach them. <ds:RetrievalMethod> consists of a location on the web from which the certificate chain may be retrieved, a method, and a type
A protocols for distributing and registering public keys, suitable for use in conjunction with the proposed standard for XML Signature [XML-SIG] developed by the World Wide Web Consortium (W3C) and the Internet Engineering Task Force (IETF) and an anticipated companion standard for XML encryption. The XML Key Management Specification (XKMS) comprises two parts -- the XML Key Information Service Specification (X-KISS) and the XML Key Registration Service Specification (X-KRSS).
openOSI see a link between Certificates practice statements, use of x.509 certificates by a web site and the Platform for Privacy Preferences developed by W3C .
The Platform for Privacy Preferences Project (P3P) enables Websites to express their privacy practices in a standard format that can be retrieved automatically and interpreted easily by user agents. P3P user agents will allow users to be informed of site practices (in both machine- and human-readable formats) and to automate decision-making based on these practices when appropriate. Thus users need not read the privacy policies at every site they visit.