This working group has already produced an IS addendum (Association Control Service Element, Authentication) to ISO 8649. Presently it is working on the OSI Upper Layer Security Model (ULSM), a Committee Draft and on a Generic Upper Layer Security Service Element (GULS).
ULSM will specify:
An off-shoot of this work is the proposed GULS standard (ISO DIS 11586). GULS, a five part standard, provides security-exchange functions that allow the exchange of security information and security-transformation functions that support the integrity and confidentiality of application data. The latter are supported through ASN.1 extensions.
This work has been the cause of considerable controversy in the past since cryptographic transformations in layer 7 all but replace the functionality of layer 6. But, the appropriate vague statements have been included (i.e., the transformations may be performed in either layer) and the work is now much less controversial. Last minute challenges to this work (including UK proposals for a generic security ESO-OSI abstract interface standard) have not slowed down its progress and it is expected that this work will be incorporated in several applications in the near future.
Most interestingly, the work in GULS is already reflected in the IEEE work on key management. The United States has been interested in having this work accepted as an OSI standard for two reasons:
A New Work Item (Authentication, Access Control, and key management service elements) has passed ballot in WG6 and the United States intends to port the IEEE work to ISO.