Draft:X.1280
Standard defining the framework for out-of-band server authentication (ITU-T X.1280)
From Wikipedia, the free encyclopedia
ITU-T X.1280 is an international standard from the ITU-T that defines a framework for server authentication using an out-of-band (OOB) mobile device channel.[1][2] The standard (Recommendation), approved in March 2024, was developed based on technology originating from South Korea.[1][3]
Submission declined on 10 December 2025 by Smallangryplanet (talk).
Where to get help
How to improve a draft
You can also browse Wikipedia:Featured articles and Wikipedia:Good articles to find examples of Wikipedia's best writing on topics similar to your proposed article. Improving your odds of a speedy review To improve your odds of a faster review, tag your draft with relevant WikiProject tags using the button below. This will let reviewers know a new draft has been submitted in their area of interest. For instance, if you wrote about a female astronomer, you would want to add the Biography, Astronomy, and Women scientists tags. Editor resources
|  |
| Submission declined on 21 May 2025 by ToadetteEdit (talk). This draft is not adequately supported by reliable sources. Wikipedia's verifiability policy requires that all content be supported by reliable sources.
Declined by ToadetteEdit 9 months ago.
| |
| Submission declined on 10 May 2025 by Caleb Stanford (talk). This draft reads like an advertisement. Wikipedia is an encyclopedia, not a platform for promotion or marketing. Drafts that are exclusively promotional may be deleted without notice.
Declined by Caleb Stanford 10 months ago.Wikipedia articles must be written neutrally in a formal, impersonal, and dispassionate way. They should not read like a blog post, advertisement, or fan page. Rewrite the draft to remove:
Instead, only summarize in your own words a range of independent, reliable, published sources that discuss the subject. If you have a conflict of interest (e.g. you are the subject, an employee, or a relative) or are being paid to edit, you must disclose this to comply with Wikipedia's Terms of Use. | |
Comment: This still needs more secondary coverage. Smallangryplanet (talk) 20:18, 10 December 2025 (UTC)
 | This is a draft article. It is a work in progress open to editing by anyone. Please ensure core content policies are met before publishing it as a live Wikipedia article. Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL Last edited by Smallangryplanet (talk | contribs) 3 months ago. (Update)
Finished drafting? or |
| X.1280 | |
|---|---|
| Framework for out-of-band server authentication using mobile devices | |
| Status | In force (Recommendation) |
| Year started | 2022 |
| Latest version | 1.0 March 1, 2024 |
| Organization | ITU-T |
| Committee | ITU-T Study Group 17 |
| Series | X |
| Related standards | X.509, X.1254 |
| Domain | Cybersecurity, Phishing resistance |
| Website | handle |
The primary goal of this recommendation is to address the verifier impersonation vulnerability—such as phishing or pharming sites—found in traditional authentication methods.[1][2][4] A central principle of this framework is the implementation of a mutual authentication procedure.[2] This procedure requires explicit user verification of the server's legitimacy before submitting authentication credentials, such as passwords.[2][3]
The framework enhances traditional authentication by having the user actively authenticate the server's identity at the start of the process.[4] This user-first verification helps reduce vulnerabilities such as terminal dependency (seen in some PKI-based methods) and verifier impersonation, which are commonly exploited in conventional authentication schemes.[2][3]
Wikipedia articles must be written neutrally in a formal, impersonal, and dispassionate way. They should not read like a blog post, advertisement, or fan page. Rewrite the draft to remove:
Instead, only summarize in your own words a range of independent, reliable, published sources that discuss the subject.
If you have a conflict of interest (e.g. you are the subject, an employee, or a relative) or are being paid to edit, you must disclose this to comply with Wikipedia's Terms of Use.