{"id":38532,"date":"2026-01-12T15:13:14","date_gmt":"2026-01-12T07:13:14","guid":{"rendered":"https:\/\/www.evb.com\/?p=38532"},"modified":"2026-01-16T20:39:19","modified_gmt":"2026-01-16T12:39:19","slug":"iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance","status":"publish","type":"post","link":"https:\/\/www.evb.com\/vi\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/","title":{"rendered":"Qu\u1ea3n l\u00fd v\u00f2ng \u0111\u1eddi ch\u1ee9ng ch\u1ec9 ISO 15118 n\u0103m 2026: T\u1eeb s\u1ef1 c\u1ea5p b\u00e1ch c\u1ee7a TLS \u0111\u1ebfn tu\u00e2n th\u1ee7 CRA."},"content":{"rendered":"<article>\n<div class=\"mceTemp\"><\/div>\n<figure id=\"attachment_36118\" aria-describedby=\"caption-attachment-36118\" style=\"width: 635px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-36118\" title=\"T\u1ed5ng quan v\u1ec1 d\u00f2ng s\u1ea3n ph\u1ea9m s\u1ea1c v\u00e0 l\u01b0u tr\u1eef n\u0103ng l\u01b0\u1ee3ng xe \u0111i\u1ec7n (EVB):\" src=\"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/11\/20251119-212027.jpeg\" alt=\"Danh m\u1ee5c s\u1ea3n ph\u1ea9m c\u1ee7a EVB bao g\u1ed3m b\u1ed9 s\u1ea1c xe \u0111i\u1ec7n AC v\u00e0 DC v\u00e0 h\u1ec7 th\u1ed1ng l\u01b0u tr\u1eef n\u0103ng l\u01b0\u1ee3ng th\u01b0\u01a1ng m\u1ea1i.\" width=\"635\" height=\"397\" srcset=\"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/11\/20251119-212027.jpeg 2560w, https:\/\/www.evb.com\/wp-content\/uploads\/2025\/11\/20251119-212027-1536x960.jpeg 1536w, https:\/\/www.evb.com\/wp-content\/uploads\/2025\/11\/20251119-212027-2048x1280.jpeg 2048w, https:\/\/www.evb.com\/wp-content\/uploads\/2025\/11\/20251119-212027-18x12.jpeg 18w, https:\/\/www.evb.com\/wp-content\/uploads\/2025\/11\/20251119-212027-600x375.jpeg 600w, https:\/\/www.evb.com\/wp-content\/uploads\/2025\/11\/20251119-212027-768x480.jpeg 768w\" sizes=\"auto, (max-width: 635px) 100vw, 635px\" \/><figcaption id=\"caption-attachment-36118\" class=\"wp-caption-text\"><a href=\"https:\/\/www.evb.com\/vi\/\">EVB cung c\u1ea5p \u0111\u1ea7y \u0111\u1ee7 c\u00e1c lo\u1ea1i b\u1ed9 s\u1ea1c xe \u0111i\u1ec7n AC v\u00e0 DC.<\/a><\/figcaption><\/figure>\n<h2>T\u00f3m t\u1eaft h\u00e0nh \u0111\u1ed9ng ch\u00ednh (TL;DR)<\/h2>\n<ul>\n<li><strong>Vi\u1ec7c chuy\u1ec3n \u0111\u1ed5i sang TLS l\u00e0 m\u1ed9t ranh gi\u1edbi c\u1ee9ng nh\u1eafc (kh\u00f4ng ph\u1ea3i l\u00e0 m\u1ed9t g\u1ee3i \u00fd):<\/strong> T\u1eeb <strong>Ng\u00e0y 24 th\u00e1ng 2 n\u0103m 2026<\/strong>DigiCert s\u1ebd <strong>ng\u1eebng ch\u1ea5p nh\u1eadn<\/strong> y\u00eau c\u1ea7u ch\u1ee9ng ch\u1ec9 TLS c\u00f4ng khai c\u00f3 hi\u1ec7u l\u1ef1c <strong>h\u01a1n 199 ng\u00e0y<\/strong>v\u00e0 c\u00e1c ch\u1ee9ng ch\u1ec9 \u0111\u01b0\u1ee3c c\u1ea5p t\u1eeb ng\u00e0y \u0111\u00f3 tr\u1edf \u0111i c\u00f3 m\u1ed9t <strong>Th\u1eddi h\u1ea1n s\u1eed d\u1ee5ng t\u1ed1i \u0111a 199 ng\u00e0y<\/strong>\u0110\u00e2y l\u00e0 b\u01b0\u1edbc chuy\u1ec3n \u0111\u1ed5i th\u1ef1c t\u1ebf \u0111\u1ed1i v\u1edbi nhi\u1ec1u nh\u00e0 m\u1ea1ng \u2014 t\u1ed1c \u0111\u1ed9 \u0111\u1ed5i m\u1edbi t\u0103ng l\u00ean ngay l\u1eadp t\u1ee9c.<\/li>\n<li><strong>L\u1ed9 tr\u00ecnh 200\u2192100\u219247 ng\u00e0y \u0111\u00e3 \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh:<\/strong> C\u00e1c y\u00eau c\u1ea7u c\u01a1 b\u1ea3n c\u1ee7a Di\u1ec5n \u0111\u00e0n CA\/Browser \u0111\u1eb7t ra m\u1ed9t l\u1ed9 tr\u00ecnh gi\u1ea3m d\u1ea7n theo t\u1eebng giai \u0111o\u1ea1n: <strong>200 ng\u00e0y k\u1ec3 t\u1eeb ng\u00e0y 15 th\u00e1ng 3 n\u0103m 2026<\/strong>, <strong>100 ng\u00e0y k\u1ec3 t\u1eeb ng\u00e0y 15 th\u00e1ng 3 n\u0103m 2027<\/strong>, V\u00e0 <strong>47 ng\u00e0y k\u1ec3 t\u1eeb ng\u00e0y 15 th\u00e1ng 3 n\u0103m 2029<\/strong>.<\/li>\n<li><strong>CRA b\u1ed5 sung th\u00eam \u0111\u1ed3ng h\u1ed3 \u0111\u1ebfm ng\u01b0\u1ee3c th\u1eddi gian tu\u00e2n th\u1ee7:<\/strong> C\u00e1c quy t\u1eafc b\u00e1o c\u00e1o c\u1ee7a CRA y\u00eau c\u1ea7u <strong>c\u1ea3nh b\u00e1o s\u1edbm trong v\u00f2ng 24 gi\u1edd<\/strong>, <strong>Th\u00f4ng b\u00e1o \u0111\u1ea7y \u0111\u1ee7 trong v\u00f2ng 72 gi\u1edd<\/strong>v\u00e0 x\u00e1c \u0111\u1ecbnh khung th\u1eddi gian b\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng cho c\u00e1c l\u1ed7 h\u1ed5ng \u0111ang b\u1ecb khai th\u00e1c v\u00e0 c\u00e1c s\u1ef1 c\u1ed1 nghi\u00eam tr\u1ecdng.<\/li>\n<li><strong>R\u1ee7i ro ti\u1ec1m \u1ea9n h\u00e0ng \u0111\u1ea7u kh\u00f4ng ph\u1ea3i l\u00e0 h\u1ea1n s\u1eed d\u1ee5ng:<\/strong> Ch\u1ebf \u0111\u1ed9 l\u1ed7i h\u1ec7 th\u1ed1ng l\u00e0 <strong>tin t\u01b0\u1edfng neo tr\u00f4i d\u1ea1t<\/strong>\u2014C\u00e1c thay \u0111\u1ed5i v\u1ec1 ch\u1ee9ng ch\u1ec9 g\u1ed1c\/trung gian\/k\u00fd ch\u00e9o kh\u00f4ng \u0111\u1ed3ng b\u1ed9 gi\u1eefa c\u00e1c tr\u1ea1m s\u1ea1c xe \u0111i\u1ec7n (EVSE), b\u1ed9 \u0111i\u1ec1u khi\u1ec3n c\u1ee5c b\u1ed9 v\u00e0 c\u00e1c \u0111\u01b0\u1eddng d\u1eabn x\u00e1c th\u1ef1c ph\u1ee5 tr\u1ee3.<\/li>\n<li><strong>Kho\u1ea3n \u0111\u1ea7u t\u01b0 \u0111\u1ea7u ti\u00ean \u0111\u1ec3 b\u1ea3o v\u1ec7 th\u1eddi gian ho\u1ea1t \u0111\u1ed9ng:<\/strong> T\u1ef1 \u0111\u1ed9ng h\u00f3a d\u1ef1a tr\u00ean h\u1ec7 th\u1ed1ng (ACME + kho h\u00e0ng + tri\u1ec3n khai theo t\u1eebng giai \u0111o\u1ea1n) c\u1ed9ng v\u1edbi <strong>s\u1ef1 li\u00ean t\u1ee5c c\u1ee7a c\u1ea1nh<\/strong> (X\u00e1c th\u1ef1c\/l\u01b0u tr\u1eef c\u1ee5c b\u1ed9, nh\u1eadt k\u00fd b\u1eb1ng ch\u1ee9ng v\u00e0 qu\u1ea3n tr\u1ecb \u0111\u1ed3ng b\u1ed9 th\u1eddi gian).<\/li>\n<\/ul>\n<h2>Gi\u1edbi thi\u1ec7u: N\u0103m 2026 bi\u1ebfn Plug &amp; Charge th\u00e0nh m\u1ed9t h\u1ec7 th\u1ed1ng ho\u1ea1t \u0111\u1ed9ng hi\u1ec7u qu\u1ea3<\/h2>\n<p>V\u00e0o n\u0103m 2026, Plug &amp; Charge (P&amp;C) s\u1ebd kh\u00f4ng c\u00f2n l\u00e0 t\u00ednh n\u0103ng &quot;c\u00e0i \u0111\u1eb7t m\u1ed9t l\u1ea7n r\u1ed3i qu\u00ean&quot; n\u1eefa m\u00e0 tr\u1edf th\u00e0nh m\u1ed9t t\u00ednh n\u0103ng ch\u00ednh th\u1ee9c. <strong>h\u1ec7 th\u1ed1ng v\u1eadn h\u00e0nh li\u00ean t\u1ee5c<\/strong>.<br \/>\nN\u1ec1n t\u1ea3ng tin c\u1eady ISO 15118 (PKI + TLS + thu h\u1ed3i ch\u1ee9ng ch\u1ec9 + c\u1eadp nh\u1eadt) hi\u1ec7n \u0111\u01b0\u1ee3c qu\u1ea3n l\u00fd b\u1edfi c\u00e1c m\u1ed1c th\u1eddi gian kh\u00f4ng cho ph\u00e9p th\u1ef1c hi\u1ec7n c\u00e1c quy tr\u00ecnh th\u1ee7 c\u00f4ng.<\/p>\n<p>\u0110\u1ec3 hi\u1ec3u r\u00f5 ranh gi\u1edbi c\u1ee7a h\u1ec7 th\u1ed1ng\u2014ISO 15118 ch\u1ecbu tr\u00e1ch nhi\u1ec7m v\u1ec1 nh\u1eefng g\u00ec so v\u1edbi OCPP ch\u1ecbu tr\u00e1ch nhi\u1ec7m\u2014h\u00e3y b\u1eaft \u0111\u1ea7u v\u1edbi b\u00e0i vi\u1ebft b\u1ed5 sung c\u1ee7a ch\u00fang t\u00f4i:<br \/>\n<a href=\"https:\/\/www.evb.com\/vi\/iso-15118-ocpp-in-2026-real-world-deployment-pki-and-grid-readiness\/\">Th\u1ef1c t\u1ebf tri\u1ec3n khai ISO 15118 so v\u1edbi OCPP v\u00e0o n\u0103m 2026<\/a>.<\/p>\n<p>\u00c1p l\u1ef1c tr\u01b0\u1edbc m\u1eaft l\u00e0 <strong>n\u00e9n v\u00f2ng \u0111\u1eddi TLS<\/strong>V\u1ec1 m\u1eb7t v\u1eadn h\u00e0nh, b\u1ea1n kh\u00f4ng th\u1ec3 &quot;ch\u1edd \u0111\u1ebfn th\u00e1ng Ba&quot;.<br \/>\nDigiCert s\u1ebd <strong>ng\u1eebng ch\u1ea5p nh\u1eadn<\/strong> y\u00eau c\u1ea7u TLS c\u00f4ng khai v\u01b0\u1ee3t qu\u00e1 <strong>199 ng\u00e0y<\/strong> b\u1eaft \u0111\u1ea7u <strong>Ng\u00e0y 24 th\u00e1ng 2 n\u0103m 2026<\/strong>,<br \/>\nv\u00e0 c\u00e1c ch\u1ee9ng ch\u1ec9 \u0111\u01b0\u1ee3c c\u1ea5p t\u1eeb ng\u00e0y \u0111\u00f3 tr\u1edf \u0111i s\u1ebd c\u00f3 <strong>Th\u1eddi h\u1ea1n s\u1eed d\u1ee5ng t\u1ed1i \u0111a 199 ng\u00e0y<\/strong>.<br \/>\nDigiCert c\u0169ng nh\u1ea5n m\u1ea1nh m\u1ed9t chi ti\u1ebft v\u1eadn h\u00e0nh quan tr\u1ecdng: th\u1eddi h\u1ea1n hi\u1ec7u l\u1ef1c t\u1ed1i \u0111a cho ph\u00e9p \u0111\u01b0\u1ee3c quy \u0111\u1ecbnh b\u1edfi... <strong>ng\u00e0y ph\u00e1t h\u00e0nh<\/strong>Kh\u00f4ng ph\u1ea3i khi \u0111\u1eb7t h\u00e0ng.<\/p>\n<p>\u0110\u1ed3ng th\u1eddi, \u0110\u1ea1o lu\u1eadt v\u1ec1 kh\u1ea3 n\u0103ng ph\u1ee5c h\u1ed3i m\u1ea1ng c\u1ee7a EU (CRA) \u0111\u01b0a ra m\u1ed9t m\u1ed1c th\u1eddi gian th\u1ee9 hai: c\u00e1c quy t\u1eafc b\u00e1o c\u00e1o y\u00eau c\u1ea7u<br \/>\n<strong>C\u1ea3nh b\u00e1o s\u1edbm 24 gi\u1edd<\/strong> V\u00e0 <strong>Th\u00f4ng b\u00e1o tr\u01b0\u1edbc 72 gi\u1edd<\/strong> \u0110\u1ed1i v\u1edbi c\u00e1c l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt \u0111ang b\u1ecb khai th\u00e1c t\u00edch c\u1ef1c v\u00e0 c\u00e1c s\u1ef1 c\u1ed1 nghi\u00eam tr\u1ecdng \u1ea3nh h\u01b0\u1edfng \u0111\u1ebfn c\u00e1c s\u1ea3n ph\u1ea9m c\u00f3 y\u1ebfu t\u1ed1 k\u1ef9 thu\u1eadt s\u1ed1.<\/p>\n<p>H\u01b0\u1edbng d\u1eabn n\u00e0y t\u1eadp trung v\u00e0o ki\u1ebfn tr\u00fac v\u00e0 c\u00e1c bi\u1ec7n ph\u00e1p ki\u1ec3m so\u00e1t r\u1ee7i ro \u0111\u1ec3 v\u1eadn h\u00e0nh ch\u1ee9ng ch\u1ec9 ISO 15118 trong \u0111i\u1ec1u ki\u1ec7n r\u00e0ng bu\u1ed9c n\u00eau tr\u00ean.<\/p>\n<h2>C\u00e1c m\u1ed1c th\u1eddi gian v\u00e0 h\u00e0nh \u0111\u1ed9ng c\u1ea7n thi\u1ebft giai \u0111o\u1ea1n 2024\u20132026 (Bi\u1ec3u \u0111\u1ed3 Gantt d\u1ea1ng v\u0103n b\u1ea3n)<\/h2>\n<table style=\"border-collapse: collapse; width: 100%;\" border=\"1\" cellspacing=\"0\" cellpadding=\"8\">\n<thead>\n<tr>\n<th>C\u1eeda s\u1ed5<\/th>\n<th>N\u1eeda \u0111\u1ea7u n\u0103m 2024<\/th>\n<th>N\u1eeda \u0111\u1ea7u n\u0103m 2025<\/th>\n<th>N\u1eeda \u0111\u1ea7u n\u0103m 2025<\/th>\n<th><strong>24 th\u00e1ng 2 n\u0103m 2026<\/strong><\/th>\n<th><strong>Ng\u00e0y 15 th\u00e1ng 3 n\u0103m 2026<\/strong><\/th>\n<th><strong>Ng\u00e0y 11 th\u00e1ng 9 n\u0103m 2026<\/strong><\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td><strong>Thay \u0111\u1ed5i b\u00ean ngo\u00e0i<\/strong><\/td>\n<td>t\u00edn hi\u1ec7u chuy\u1ec3n \u0111\u1ed5i CA<\/td>\n<td>T\u1ef1 \u0111\u1ed9ng h\u00f3a phi c\u00f4ng<\/td>\n<td>C\u00e1c b\u00e0i t\u1eadp neo tin t\u01b0\u1edfng<\/td>\n<td><strong>Vi\u1ec7c ph\u00e1t h\u00e0nh ch\u1ee9ng ch\u1ec9 DigiCert c\u00f3 th\u1eddi h\u1ea1n 199 ng\u00e0y b\u1eaft \u0111\u1ea7u.<\/strong><\/td>\n<td><strong>Giai \u0111o\u1ea1n gi\u1edbi h\u1ea1n BR 200 ng\u00e0y b\u1eaft \u0111\u1ea7u<\/strong><\/td>\n<td>Ngh\u0129a v\u1ee5 b\u00e1o c\u00e1o cho CRA v\u1eabn c\u00f2n hi\u1ec7u l\u1ef1c (theo h\u01b0\u1edbng d\u1eabn)<\/td>\n<\/tr>\n<tr>\n<td><strong>N\u00ean l\u00e0m g\u00ec<\/strong><\/td>\n<td>\u0110i\u1ec3m cu\u1ed1i kho<\/td>\n<td>Phi c\u00f4ng ACME + h\u1ec7 th\u1ed1ng \u0111o t\u1eeb xa<\/td>\n<td>Chi\u1ebfn l\u01b0\u1ee3c ngo\u1ea1i tuy\u1ebfn + tri\u1ec3n khai c\u1eeda h\u00e0ng tin c\u1eady<\/td>\n<td>\u0110\u00f3ng b\u0103ng c\u00e1c \u0111\u01b0\u1eddng d\u1eabn gia h\u1ea1n th\u1ee7 c\u00f4ng<\/td>\n<td>\u0110\u1ed5i m\u1edbi to\u00e0n di\u1ec7n do h\u1ec7 th\u1ed1ng d\u1eabn d\u1eaft<\/td>\n<td>Th\u1ef1c hi\u1ec7n c\u00e1c b\u00e0i t\u1eadp m\u00f4 ph\u1ecfng v\u00e0 thu th\u1eadp b\u1eb1ng ch\u1ee9ng theo quy \u0111\u1ecbnh c\u1ee7a CRA.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Ghi ch\u00fa v\u1eadn h\u00e0nh:<\/strong> Ng\u00e0y 24 th\u00e1ng 2 n\u0103m 2026 th\u01b0\u1eddng l\u00e0 th\u1eddi \u0111i\u1ec3m chuy\u1ec3n \u0111\u1ed5i th\u1ef1c s\u1ef1 v\u00ec h\u00e0nh vi ph\u00e1t h\u00e0nh s\u1ebd thay \u0111\u1ed5i v\u00e0o th\u1eddi \u0111i\u1ec3m \u0111\u00f3 \u0111\u1ed1i v\u1edbi c\u00e1c t\u1ed5 ch\u1ee9c ph\u00e1t h\u00e0nh ch\u1ee9ng ch\u1ec9 l\u1edbn.<\/p>\n<p><strong>L\u01b0u \u00fd v\u1ec1 ch\u00ednh s\u00e1ch:<\/strong> C\u00e1c m\u1ee9c gi\u1ea3m th\u1eddi gian s\u1eed d\u1ee5ng theo t\u1eebng giai \u0111o\u1ea1n \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh trong Y\u00eau c\u1ea7u c\u01a1 b\u1ea3n (200\/100\/47 ng\u00e0y).<\/p>\n<h2>S\u01a1 \u0111\u1ed3 v\u00f2ng \u0111\u1eddi: C\u1ea5p ph\u00e9p \u2192 V\u1eadn h\u00e0nh \u2192 Gia h\u1ea1n \u2192 Thu h\u1ed3i<\/h2>\n<h3>S\u01a1 \u0111\u1ed3 v\u00f2ng \u0111\u1eddi (nh\u1eefng g\u00ec b\u1ea1n c\u1ea7n ph\u1ea3i v\u1eadn h\u00e0nh \u0111\u01b0\u1ee3c)<\/h3>\n<ol>\n<li><strong>Cung c\u1ea5p cho nh\u00e0 s\u1ea3n xu\u1ea5t thi\u1ebft b\u1ecb g\u1ed1c (OEM):<\/strong> C\u00e1c kh\u00f3a \u0111\u00e3 \u0111\u01b0\u1ee3c t\u1ea1o\/c\u00e0i \u0111\u1eb7t; g\u1ed1c tin c\u1eady \u0111\u00e3 \u0111\u01b0\u1ee3c thi\u1ebft l\u1eadp (HSM\/ph\u1ea7n t\u1eed b\u1ea3o m\u1eadt).<\/li>\n<li><strong>\u0110\u0103ng k\u00fd h\u1ee3p \u0111\u1ed3ng:<\/strong> Ch\u1ee9ng ch\u1ec9 h\u1ee3p \u0111\u1ed3ng g\u1eafn li\u1ec1n v\u1edbi h\u1ee3p \u0111\u1ed3ng ng\u01b0\u1eddi d\u00f9ng (ph\u1ee5 thu\u1ed9c v\u00e0o h\u1ec7 sinh th\u00e1i).<\/li>\n<li><strong>V\u1eadn h\u00e0nh tr\u1ea1m s\u1ea1c xe \u0111i\u1ec7n (EVSE):<\/strong> C\u00e1c ti\u00eau chu\u1ea9n c\u01a1 b\u1ea3n v\u1ec1 \u0111\u1ed9 tin c\u1eady, ch\u00ednh s\u00e1ch v\u00e0 ti\u00eau chu\u1ea9n \u0111\u1ed3ng b\u1ed9 th\u1eddi gian \u0111\u00e3 \u0111\u01b0\u1ee3c thi\u1ebft l\u1eadp.<\/li>\n<li><strong>X\u00e1c th\u1ef1c ho\u1ea1t \u0111\u1ed9ng:<\/strong> C\u00e1c b\u01b0\u1edbc b\u1eaft tay TLS, x\u00e2y d\u1ef1ng chu\u1ed7i, ki\u1ec3m tra thu h\u1ed3i ch\u1ee9ng ch\u1ec9, th\u1ef1c thi ch\u00ednh s\u00e1ch.<\/li>\n<li><strong>Gia h\u1ea1n \/ c\u1ea5p l\u1ea1i:<\/strong> T\u1ef1 \u0111\u1ed9ng h\u00f3a + tri\u1ec3n khai theo t\u1eebng giai \u0111o\u1ea1n + ho\u00e0n t\u00e1c.<\/li>\n<li><strong>Thu h\u1ed3i\/x\u1eed l\u00fd s\u1ef1 c\u1ed1:<\/strong> Vi ph\u1ea1m\/ph\u00e1t h\u00e0nh sai\/l\u1ee3i d\u1ee5ng \u2192 thu h\u1ed3i\/xoay v\u00f2ng\/kh\u00f4i ph\u1ee5c.<\/li>\n<li><strong>Ph\u1ee5c h\u1ed3i v\u00e0 h\u00f2a gi\u1ea3i:<\/strong> Kh\u00f4i ph\u1ee5c d\u1ecbch v\u1ee5 \u0111\u1ed3ng th\u1eddi b\u1ea3o \u0111\u1ea3m kh\u1ea3 n\u0103ng ki\u1ec3m to\u00e1n v\u00e0 t\u00ednh to\u00e0n v\u1eb9n c\u1ee7a h\u00f3a \u0111\u01a1n.<\/li>\n<\/ol>\n<h3>\u0110i\u1ec3m y\u1ebfu th\u01b0\u1eddng b\u1ecb \u0111\u00e1nh gi\u00e1 th\u1ea5p: S\u1ef1 tr\u00f4i l\u1ec7ch c\u1ee7a \u0111i\u1ec3m neo ni\u1ec1m tin<\/h3>\n<p>H\u1ea7u h\u1ebft c\u00e1c &quot;l\u1ed7i b\u1ea3o hi\u1ec3m t\u00e0i s\u1ea3n v\u00e0 tr\u00e1ch nhi\u1ec7m d\u00e2n s\u1ef1 b\u00ed \u1ea9n&quot; trong m\u00f4i tr\u01b0\u1eddng \u0111a nh\u00e0 s\u1ea3n xu\u1ea5t kh\u00f4ng ph\u1ea3i do m\u1ed9t ch\u1ee9ng ch\u1ec9 h\u1ebft h\u1ea1n duy nh\u1ea5t\u2014m\u00e0 l\u00e0 do...<br \/>\n<strong>l\u1ed7i x\u00e1c th\u1ef1c \u0111\u01b0\u1eddng d\u1eabn<\/strong> Nguy\u00ean nh\u00e2n l\u00e0 do s\u1ef1 tr\u00f4i d\u1ea1t c\u1ee7a \u0111i\u1ec3m neo tin c\u1eady:<\/p>\n<ul>\n<li>Xu\u1ea5t hi\u1ec7n c\u00e1c g\u1ed1c\/giai \u0111o\u1ea1n trung gian m\u1edbi (th\u1ef1c t\u1ebf \u0111a g\u1ed1c).<\/li>\n<li><strong>K\u00fd ch\u00e9o<\/strong> Nh\u1eefng thay \u0111\u1ed5i n\u00e0y l\u00e0m bi\u1ebfn \u0111\u1ed5i c\u00e1c chu\u1ed7i kh\u1ea3 thi.<\/li>\n<li>Kho d\u1eef li\u1ec7u ch\u1ee9ng th\u1ef1c ph\u00eda m\u00e1y ch\u1ee7 c\u1eadp nh\u1eadt nhanh h\u01a1n so v\u1edbi b\u1ed9 \u0111i\u1ec1u khi\u1ec3n c\u1ee5c b\u1ed9\/tr\u1ea1m s\u1ea1c xe \u0111i\u1ec7n.<\/li>\n<li>C\u00e1c b\u1eb1ng ch\u1ee9ng thu h\u1ed3i s\u1ebd tr\u1edf n\u00ean l\u1ed7i th\u1eddi \u1edf v\u00f9ng bi\u00ean.<\/li>\n<\/ul>\n<p>H\u00e3y coi vi\u1ec7c c\u1eadp nh\u1eadt \u0111i\u1ec3m neo tin c\u1eady l\u00e0 m\u1ed9t quy tr\u00ecnh thay \u0111\u1ed5i quan tr\u1ecdng v\u1ec1 m\u1eb7t an to\u00e0n:<\/p>\n<ul>\n<li>kho tin c\u1eady \u0111\u01b0\u1ee3c phi\u00ean b\u1ea3n<\/li>\n<li>Tri\u1ec3n khai Canary<\/li>\n<li>K\u1ebf ho\u1ea1ch ho\u00e0n tr\u1ea3<\/li>\n<li>Th\u00f4ng tin \u0111o t\u1eeb xa v\u1ec1 c\u00e1c l\u1ed7i x\u00e1c th\u1ef1c theo nh\u00e0 ph\u00e1t h\u00e0nh\/s\u1ed1 s\u00ea-ri\/\u0111\u01b0\u1eddng d\u1eabn<\/li>\n<li>C\u1ea7n x\u00e1c \u0111\u1ecbnh r\u00f5 r\u00e0ng ai ch\u1ecbu tr\u00e1ch nhi\u1ec7m c\u1eadp nh\u1eadt c\u00e1i g\u00ec, khi n\u00e0o.<\/li>\n<\/ul>\n<p><strong>Nh\u1eefng th\u1ea5t b\u1ea1i trong vi\u1ec7c k\u00fd k\u1ebft ch\u00e9o v\u00e0 x\u00e2y d\u1ef1ng l\u1ed9 tr\u00ecnh (th\u1ef1c tr\u1ea1ng n\u0103m 2026):<\/strong> Trong h\u1ec7 sinh th\u00e1i ISO 15118 \u0111a g\u1ed1c,<br \/>\nQu\u00e1 tr\u00ecnh c\u1eafm s\u1ea1c th\u01b0\u1eddng th\u1ea5t b\u1ea1i kh\u00f4ng ph\u1ea3i v\u00ec ch\u1ee9ng ch\u1ec9 kh\u00f4ng h\u1ee3p l\u1ec7, m\u00e0 v\u00ec thi\u1ebft b\u1ecb s\u1ea1c xe \u0111i\u1ec7n (EVSE) kh\u00f4ng th\u1ec3 t\u1ea1o ra ch\u1ee9ng ch\u1ec9 h\u1ee3p l\u1ec7.<br \/>\n<strong>\u0111\u01b0\u1eddng d\u1eabn ch\u1ee9ng ch\u1ec9<\/strong> sau khi th\u1ef1c hi\u1ec7n c\u00e1c thay \u0111\u1ed5i v\u1ec1 k\u00fd ch\u00e9o (c\u00e1c ch\u1ee9ng ch\u1ec9 trung gian m\u1edbi, ch\u1ee9ng ch\u1ec9 CA c\u1ea7u n\u1ed1i, chu\u1ed7i ch\u1ee9ng ch\u1ec9 \u0111\u01b0\u1ee3c ph\u00e1t h\u00e0nh l\u1ea1i).<br \/>\nKhi c\u00e0ng nhi\u1ec1u nh\u00e0 s\u1ea3n xu\u1ea5t thi\u1ebft b\u1ecb g\u1ed1c (OEM) v\u00e0 mi\u1ec1n PKI tham gia, \u0111\u1ed9 ph\u1ee9c t\u1ea1p c\u1ee7a \u0111\u01b0\u1eddng d\u1eabn c\u00e0ng t\u0103ng. N\u1ebfu c\u00e1c kho l\u01b0u tr\u1eef tin c\u1eady \u1edf bi\u00ean (EVSE\/b\u1ed9 \u0111i\u1ec1u khi\u1ec3n c\u1ee5c b\u1ed9)<br \/>\nDo ch\u1eadm tr\u1ec5 trong vi\u1ec7c c\u1eadp nh\u1eadt h\u1ec7 th\u1ed1ng ph\u1ee5 tr\u1ee3, qu\u00e1 tr\u00ecnh b\u1eaft tay TLS c\u00f3 th\u1ec3 th\u1ea5t b\u1ea1i ngay c\u1ea3 khi ch\u1ee9ng ch\u1ec9 h\u1ec7 th\u1ed1ng ph\u1ee5 tr\u1ee3 tr\u00f4ng c\u00f3 v\u1ebb &quot;h\u1ee3p l\u1ec7&quot; khi x\u00e9t ri\u00eang l\u1ebb.<\/p>\n<blockquote style=\"margin: 16px 0; padding: 12px 16px; border-left: 4px solid #ccc;\"><p><strong>H\u00ecnh 1 (H\u00ecnh \u1ea3nh minh h\u1ecda \u0111\u01b0\u1ee3c \u0111\u1ec1 xu\u1ea5t): X\u00e1c th\u1ef1c \u0111\u01b0\u1eddng d\u1eabn trong ISO 15118 \u0111a g\u1ed1c<\/strong><\/p>\n<p>(Hi\u1ec3n th\u1ecb c\u00e1c th\u01b0 m\u1ee5c g\u1ed1c V2G \/ OEM Root \/ Contract Root, c\u00e1c th\u01b0 m\u1ee5c trung gian v\u00e0 c\u00e1c c\u1ea7u n\u1ed1i k\u00fd ch\u00e9o.)<br \/>\n(H\u00e3y ch\u1ec9 r\u00f5 v\u1ecb tr\u00ed m\u00e0 m\u1ed9t ch\u1ee9ng ch\u1ec9 trung gian \u0111\u01b0\u1ee3c k\u00fd ch\u00e9o m\u1edbi l\u00e0m gi\u00e1n \u0111o\u1ea1n qu\u00e1 tr\u00ecnh x\u00e2y d\u1ef1ng \u0111\u01b0\u1eddng d\u1eabn tr\u00ean EVSE n\u1ebfu kho l\u01b0u tr\u1eef ch\u1ee9ng ch\u1ec9 kh\u00f4ng \u0111\u01b0\u1ee3c c\u1eadp nh\u1eadt \u0111\u1ed3ng b\u1ed9.)<\/p>\n<p><strong>Th\u00f4ng \u0111i\u1ec7p c\u1ed1t l\u00f5i:<\/strong> H\u1ea7u h\u1ebft c\u00e1c s\u1ef1 c\u1ed1 m\u1ea5t \u0111i\u1ec7n c\u1ee7a P&amp;C \u0111\u01b0\u1ee3c \u0111\u1ed5 l\u1ed7i cho \u201cPKI\u201d th\u1ef1c ch\u1ea5t l\u00e0 <strong>l\u1ed7i x\u00e1c th\u1ef1c \u0111\u01b0\u1eddng d\u1eabn<\/strong> Nguy\u00ean nh\u00e2n l\u00e0 do s\u1ef1 sai l\u1ec7ch trong vi\u1ec7c k\u00fd ch\u00e9o v\u00e0 c\u00e1c kho l\u01b0u tr\u1eef \u0111\u1ed9 tin c\u1eady kh\u00f4ng \u0111\u1ed3ng b\u1ed9.<\/p><\/blockquote>\n<h2>ACME &amp; T\u1ef1 \u0111\u1ed9ng h\u00f3a: Do con ng\u01b0\u1eddi d\u1eabn d\u1eaft so v\u1edbi do h\u1ec7 th\u1ed1ng d\u1eabn d\u1eaft trong v\u00f2ng \u0111\u1eddi d\u01b0\u1edbi 199\/200 ng\u00e0y<\/h2>\n<h3>V\u00ec sao vi\u1ec7c gia h\u1ea1n th\u1ee7 c\u00f4ng l\u1ea1i tr\u1edf th\u00e0nh nguy\u00ean nh\u00e2n g\u00e2y ra s\u1ef1 c\u1ed1 kh\u00f4ng th\u1ec3 tr\u00e1nh kh\u1ecfi?<\/h3>\n<p>Th\u1eddi h\u1ea1n ng\u1eafn khi\u1ebfn vi\u1ec7c gia h\u1ea1n di\u1ec5n ra li\u00ean t\u1ee5c. \u0110\u1ed9ng th\u00e1i c\u1ee7a DigiCert h\u01b0\u1edbng t\u1edbi... <strong>199 ng\u00e0y k\u1ec3 t\u1eeb ng\u00e0y 24 th\u00e1ng 2 n\u0103m 2026<\/strong><br \/>\n\u0110i\u1ec1u n\u00e0y gi\u00fap nhi\u1ec1u \u0111\u1ed9i t\u00e0u c\u00f3 th\u1ec3 v\u1eadn h\u00e0nh ngay l\u1eadp t\u1ee9c. V\u00e0 l\u1ed9 tr\u00ecnh t\u1ed5ng th\u1ec3 c\u1ee7a ng\u00e0nh \u0111\u00e3 \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh:<br \/>\n<strong>200 ng\u00e0y<\/strong> (t\u1eeb ng\u00e0y 15 th\u00e1ng 3 n\u0103m 2026), sau \u0111\u00f3 <strong>100 ng\u00e0y<\/strong>, sau \u0111\u00f3 <strong>47 ng\u00e0y<\/strong>.<\/p>\n<p>\u0110\u1ed1i v\u1edbi b\u1ea5t k\u1ef3 \u0111\u1ed9i t\u00e0u n\u00e0o, c\u00e1c s\u1ef1 ki\u1ec7n \u0111\u1ed5i m\u1edbi s\u1ebd di\u1ec5n ra theo t\u1ef7 l\u1ec7 nh\u01b0 sau:<\/p>\n<pre style=\"background: #f6f8fa; padding: 12px; overflow: auto;\"><code>S\u1ed1 s\u1ef1 ki\u1ec7n \u0111\u1ed5i m\u1edbi m\u1ed7i n\u0103m \u2248 N \u00d7 (365 \/ L)<\/code><\/pre>\n<p>\u1ede \u0111\u00e2u <code>N<\/code> l\u00e0 s\u1ed1 l\u01b0\u1ee3ng \u0111i\u1ec3m cu\u1ed1i TLS v\u00e0 <code>L<\/code> Th\u1eddi h\u1ea1n hi\u1ec7u l\u1ef1c c\u1ee7a ch\u1ee9ng ch\u1ec9 (ng\u00e0y).<br \/>\nB\u1eb0NG <code>L<\/code> Khi t\u1ed1c \u0111\u1ed9 gi\u1ea3m, vi\u1ec7c \u0111\u1ed5i m\u1edbi do con ng\u01b0\u1eddi th\u1ef1c hi\u1ec7n tr\u1edf n\u00ean kh\u00f4ng t\u01b0\u01a1ng th\u00edch v\u1ec1 m\u1eb7t to\u00e1n h\u1ecdc v\u1edbi c\u00e1c m\u1ee5c ti\u00eau v\u1ec1 th\u1eddi gian ho\u1ea1t \u0111\u1ed9ng.<\/p>\n<h3>K\u1ecbch b\u1ea3n (X\u00e1c \u0111\u1ecbnh quy m\u00f4 \u1edf c\u1ea5p h\u1ed9i \u0111\u1ed3ng qu\u1ea3n tr\u1ecb)<\/h3>\n<p>\u0110\u1ed1i v\u1edbi m\u1ed9t CPO \u0111ang ho\u1ea1t \u0111\u1ed9ng <strong>5.000 \u0111i\u1ec3m cu\u1ed1i<\/strong>Tu\u1ed5i th\u1ecd 199 ng\u00e0y \u0111\u1ed3ng ngh\u0129a v\u1edbi:<\/p>\n<pre style=\"background: #f6f8fa; padding: 12px; overflow: auto;\"><code>S\u1ed1 s\u1ef1 ki\u1ec7n \u0111\u1ed5i m\u1edbi\/n\u0103m \u2248 5000 \u00d7 (365 \/ 199) \u2248 9.171<\/code><\/pre>\n<p>\u1ede quy m\u00f4 n\u00e0y, ngay c\u1ea3 m\u1ed9t <strong>T\u1ef7 l\u1ec7 l\u1ed7i c\u1ee7a con ng\u01b0\u1eddi trong 1%<\/strong> d\u1ecbch ra kho\u1ea3ng<br \/>\n<strong>92 l\u1ea7n m\u1ea5t \u0111i\u1ec7n do l\u1ed7i ch\u1ee9ng ch\u1ec9 m\u1ed7i n\u0103m<\/strong>\u2014tr\u01b0\u1edbc khi t\u00ednh \u0111\u1ebfn t\u00e1c \u0111\u1ed9ng c\u1ee7a gi\u1edd cao \u0111i\u1ec3m,<br \/>\nC\u00e1c h\u00ecnh ph\u1ea1t theo th\u1ecfa thu\u1eadn m\u1ee9c d\u1ecbch v\u1ee5 (SLA), ho\u1eb7c c\u00e1c l\u1ed7i lan truy\u1ec1n tr\u00ean to\u00e0n b\u1ed9 trung t\u00e2m.<\/p>\n<h3>ACME trong m\u1ea1ng l\u01b0\u1edbi s\u1ea1c: nh\u1eefng g\u00ec c\u1ea7n t\u1ef1 \u0111\u1ed9ng h\u00f3a<\/h3>\n<p>ACME (M\u00f4i tr\u01b0\u1eddng qu\u1ea3n l\u00fd ch\u1ee9ng ch\u1ec9 t\u1ef1 \u0111\u1ed9ng) bi\u1ebfn vi\u1ec7c gia h\u1ea1n ch\u1ee9ng ch\u1ec9 th\u00e0nh c\u00e1c ho\u1ea1t \u0111\u1ed9ng d\u1ef1a tr\u00ean ch\u00ednh s\u00e1ch cho:<\/p>\n<ul>\n<li>EVSE \u2194 TLS ph\u00eda m\u00e1y ch\u1ee7<\/li>\n<li>B\u1ed9 \u0111i\u1ec1u khi\u1ec3n c\u1ee5c b\u1ed9 \/ Proxy bi\u00ean TLS<\/li>\n<li>C\u1ed5ng truy c\u1eadp trang web v\u00e0 b\u1ed9 \u0111i\u1ec1u khi\u1ec3n trung t\u00e2m<\/li>\n<\/ul>\n<p><strong>Quy tr\u00ecnh l\u00e0m vi\u1ec7c do h\u1ec7 th\u1ed1ng d\u1eabn d\u1eaft (m\u1eabu ki\u1ebfn tr\u00fac)<\/strong><\/p>\n<ol>\n<li><strong>H\u00e0ng t\u1ed3n kho<\/strong> m\u1ecdi \u0111i\u1ec3m cu\u1ed1i (ng\u01b0\u1eddi ph\u00e1t h\u00e0nh, s\u1ed1 s\u00ea-ri, chu\u1ed7i, ng\u00e0y h\u1ebft h\u1ea1n, v\u00f2ng quay cu\u1ed1i c\u00f9ng).<\/li>\n<li><strong>Ch\u00ednh s\u00e1ch gia h\u1ea1n tr\u01b0\u1edbc<\/strong> (gia h\u1ea1n khi \u0111\u1ea1t ng\u01b0\u1ee1ng c\u1ed1 \u0111\u1ecbnh, kh\u00f4ng ph\u1ea3i &quot;s\u1eafp h\u1ebft h\u1ea1n&quot;).<\/li>\n<li><strong>Kh\u00f3a \u0111\u01b0\u1ee3c h\u1ed7 tr\u1ee3 ph\u1ea7n c\u1ee9ng<\/strong> N\u1ebfu c\u00f3 th\u1ec3, h\u00e3y tr\u00e1nh xu\u1ea5t kh\u1ea9u kh\u00f3a ri\u00eang t\u01b0.<\/li>\n<li><strong>Tri\u1ec3n khai theo t\u1eebng giai \u0111o\u1ea1n<\/strong> Bao g\u1ed3m c\u00e1c b\u01b0\u1edbc ki\u1ec3m tra s\u1ee9c kh\u1ecfe (b\u1eaft tay + \u1ee7y quy\u1ec1n + b\u1eaft \u0111\u1ea7u bu\u1ed5i tr\u1ecb li\u1ec7u).<\/li>\n<li><strong>Kh\u00f4i ph\u1ee5c t\u1ef1 \u0111\u1ed9ng<\/strong> v\u1edbi t\u1ef7 l\u1ec7 h\u1ecfng h\u00f3c cao.<\/li>\n<li><strong>Nh\u1eadt k\u00fd b\u1eb1ng ch\u1ee9ng<\/strong> cho m\u1ed7i l\u1ea7n ph\u00e1t h\u00e0nh\/tri\u1ec3n khai (kh\u1ea3 n\u0103ng truy xu\u1ea5t ngu\u1ed3n g\u1ed1c theo ti\u00eau chu\u1ea9n tu\u00e2n th\u1ee7).<\/li>\n<\/ol>\n<p><strong>Do con ng\u01b0\u1eddi d\u1eabn d\u1eaft so v\u1edbi do h\u1ec7 th\u1ed1ng d\u1eabn d\u1eaft<\/strong><\/p>\n<ul>\n<li>Do con ng\u01b0\u1eddi \u0111i\u1ec1u khi\u1ec3n: V\u00e9, b\u1ea3ng t\u00ednh, gia h\u1ea1n mu\u1ed9n, quy\u1ec1n s\u1edf h\u1eefu kh\u00f4ng r\u00f5 r\u00e0ng, nh\u1eefng thay \u0111\u1ed5i kh\u1ea9n c\u1ea5p \u0111\u1ea7y r\u1ee7i ro.<\/li>\n<li>H\u1ec7 th\u1ed1ng \u0111i\u1ec1u khi\u1ec3n: Ch\u00ednh s\u00e1ch x\u00e1c \u0111\u1ecbnh, ph\u00e1t h\u00e0nh t\u1ef1 \u0111\u1ed9ng, tri\u1ec3n khai c\u00f3 ki\u1ec3m so\u00e1t, \u0111o l\u01b0\u1eddng li\u00ean t\u1ee5c, b\u1eb1ng ch\u1ee9ng c\u00f3 th\u1ec3 ki\u1ec3m to\u00e1n.<\/li>\n<\/ul>\n<h2>Ki\u1ec3m tra thu h\u1ed3i ch\u1ee9ng ch\u1ec9: &quot;K\u1ebb h\u1ee7y di\u1ec7t P&amp;C&quot; (CRL so v\u1edbi OCSP, m\u1ea1ng y\u1ebfu v\u00e0 c\u00e1c ch\u00ednh s\u00e1ch c\u00f3 th\u1ec3 b\u1ea3o v\u1ec7 \u0111\u01b0\u1ee3c)<\/h2>\n<h3>V\u00ec sao h\u1ec7 th\u1ed1ng OCSP\/CRL g\u1eb7p s\u1ef1 c\u1ed1 trong c\u00e1c gara v\u00e0 kho b\u00e3i?<\/h3>\n<ul>\n<li>M\u1ea1ng LTE\/5G y\u1ebfu\/kh\u00f4ng \u1ed5n \u0111\u1ecbnh<\/li>\n<li>H\u1ea1n ch\u1ebf truy c\u1eadp (t\u01b0\u1eddng l\u1eeda\/c\u1ed5ng truy c\u1eadp h\u1ea1n ch\u1ebf)<\/li>\n<li>C\u00e1c b\u01b0\u1edbc x\u00e1c th\u1ef1c nh\u1ea1y c\u1ea3m v\u1edbi \u0111\u1ed9 tr\u1ec5<\/li>\n<li>C\u00e1c ph\u1ee5 thu\u1ed9c b\u00ean ngo\u00e0i (b\u1ed9 ph\u1ea3n h\u1ed3i OCSP, \u0111i\u1ec3m ph\u00e2n ph\u1ed1i CRL)<\/li>\n<\/ul>\n<p>K\u1ebft qu\u1ea3: Tr\u1ea1m s\u1ea1c EVSE c\u00f3 th\u1ec3 b\u1eaft \u0111\u1ea7u phi\u00ean nh\u01b0ng kh\u00f4ng ho\u00e0n t\u1ea5t. <strong>x\u00e1c th\u1ef1c thu h\u1ed3i<\/strong> m\u1ed9t c\u00e1ch \u0111\u00e1ng tin c\u1eady.<\/p>\n<h3>CRL so v\u1edbi OCSP: nh\u1eefng s\u1ef1 \u0111\u00e1nh \u0111\u1ed5i th\u1ef1c t\u1ebf<\/h3>\n<ul>\n<li><strong>CRL:<\/strong> T\u1ea3i xu\u1ed1ng dung l\u01b0\u1ee3ng l\u1edbn h\u01a1n, nh\u01b0ng c\u00f3 th\u1ec3 l\u01b0u v\u00e0o b\u1ed9 nh\u1edb \u0111\u1ec7m v\u00e0 l\u00e0m m\u1edbi theo l\u1ecbch tr\u00ecnh (t\u1ed1t cho t\u00ednh li\u00ean t\u1ee5c \u1edf thi\u1ebft b\u1ecb \u0111\u1ea7u cu\u1ed1i).<\/li>\n<li><strong>OCSP:<\/strong> T\u1ed1c \u0111\u1ed9 x\u1eed l\u00fd m\u1ed7i y\u00eau c\u1ea7u r\u1ea5t nh\u1eb9, nh\u01b0ng th\u01b0\u1eddng \u0111\u00f2i h\u1ecfi kh\u1ea3 n\u0103ng truy c\u1eadp tr\u1ef1c ti\u1ebfp t\u1ea1i \u0111i\u1ec3m y\u1ebfu nh\u1ea5t.<\/li>\n<\/ul>\n<p>N\u0103m 2026, t\u01b0 th\u1ebf \u0111\u00fang \u0111\u01b0\u1ee3c th\u1ec3 hi\u1ec7n qua nhi\u1ec1u l\u1edbp:<\/p>\n<ul>\n<li>L\u00ean l\u1ecbch l\u01b0u tr\u1eef CRL \u0111\u1ec3 t\u0103ng kh\u1ea3 n\u0103ng ph\u1ee5c h\u1ed3i<\/li>\n<li>OCSP n\u01a1i k\u1ebft n\u1ed1i \u0111\u00e1ng tin c\u1eady<\/li>\n<li>Ch\u00ednh s\u00e1ch r\u00f5 r\u00e0ng cho c\u00e1c \u0111i\u1ec1u ki\u1ec7n b\u1ecb suy gi\u1ea3m<\/li>\n<\/ul>\n<h3>V\u00ec sao vi\u1ec7c bi\u1ec7n minh cho &quot;th\u1ea5t b\u1ea1i m\u1ec1m&quot; ng\u00e0y c\u00e0ng kh\u00f3 kh\u0103n h\u01a1n<\/h3>\n<p>Trong l\u1ecbch s\u1eed, c\u01a1 ch\u1ebf &quot;th\u1ea5t b\u1ea1i m\u1ec1m&quot; (cho ph\u00e9p phi\u00ean ho\u1ea1t \u0111\u1ed9ng n\u1ebfu qu\u00e1 tr\u00ecnh ki\u1ec3m tra thu h\u1ed3i h\u1ebft h\u1ea1n) gi\u00fap duy tr\u00ec t\u00ednh kh\u1ea3 d\u1ee5ng.<br \/>\nV\u00e0o n\u0103m 2026, vi\u1ec7c bi\u1ec7n minh cho th\u1ea5t b\u1ea1i m\u1ec1m s\u1ebd tr\u1edf n\u00ean kh\u00f3 kh\u0103n h\u01a1n v\u00ec:<\/p>\n<ul>\n<li>Tu\u1ed5i th\u1ecd ng\u1eafn h\u01a1n (\u00edt dung th\u1ee9 h\u01a1n cho nh\u1eefng gi\u1ea3 \u0111\u1ecbnh l\u1ed7i th\u1eddi)<\/li>\n<li>C\u01a1 ch\u1ebf b\u00e1o c\u00e1o s\u1ef1 c\u1ed1 c\u1ee7a CRA bu\u1ed9c ph\u1ea3i c\u00f3 k\u1ef7 lu\u1eadt x\u1eed l\u00fd s\u1ef1 c\u1ed1 ch\u1eb7t ch\u1ebd h\u01a1n v\u00e0 theo d\u00f5i b\u1eb1ng ch\u1ee9ng r\u00f5 r\u00e0ng h\u01a1n.<\/li>\n<\/ul>\n<p>M\u1ed9t thi\u1ebft k\u1ebf c\u00f3 th\u1ec3 b\u1ea3o v\u1ec7 \u0111\u01b0\u1ee3c \u0111\u00f2i h\u1ecfi ch\u00ednh s\u00e1ch r\u00f5 r\u00e0ng, \u0111\u01b0\u1ee3c ghi ch\u00e9p l\u1ea1i:<\/p>\n<ul>\n<li><strong>Th\u1ea5t b\u1ea1i ho\u00e0n to\u00e0n<\/strong> d\u00e0nh cho m\u00f4i tr\u01b0\u1eddng c\u00f4ng c\u1ed9ng\/c\u00f3 r\u1ee7i ro cao<\/li>\n<li><strong>\u00c2n \u0111i\u1ec3n k\u00e8m b\u1eb1ng ch\u1ee9ng<\/strong> \u0110\u1ed1i v\u1edbi c\u00e1c \u0111\u1ed9i xe kh\u00e9p k\u00edn (c\u1eeda s\u1ed5 gi\u1edbi h\u1ea1n + c\u00e1c bi\u1ec7n ph\u00e1p ki\u1ec3m so\u00e1t b\u00f9 tr\u1eeb)<\/li>\n<li><strong>Ghi ch\u00e9p b\u1eb1ng ch\u1ee9ng<\/strong> cho m\u1ed7i quy\u1ebft \u0111\u1ecbnh b\u1ecb suy gi\u1ea3m<\/li>\n<\/ul>\n<h3>C\u00e1c bi\u1ec7n ph\u00e1p gi\u1ea3m thi\u1ec3u r\u1ee7i ro v\u1ec1 m\u1eb7t ki\u1ebfn tr\u00fac (c\u00e1c m\u00f4 h\u00ecnh, kh\u00f4ng ph\u1ea3i l\u1eddi h\u1ee9a v\u1ec1 s\u1ea3n ph\u1ea9m)<\/h3>\n<p><strong>M\u00f4 h\u00ecnh 1: X\u00e1c th\u1ef1c tr\u01b0\u1edbc c\u1ea1nh + b\u1ed9 nh\u1edb \u0111\u1ec7m<\/strong><\/p>\n<ul>\n<li>L\u01b0u tr\u1eef danh s\u00e1ch thu h\u1ed3i ch\u1ee9ng ch\u1ec9 (CRL) v\u1edbi c\u00e1c kho\u1ea3ng th\u1eddi gian hi\u1ec7u l\u1ef1c \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh.<\/li>\n<li>c\u00e1c trung gian b\u1ed9 nh\u1edb \u0111\u1ec7m v\u00e0 chu\u1ed7i \u0111\u00e3 \u0111\u01b0\u1ee3c x\u00e1c th\u1ef1c<\/li>\n<li>T\u1ea3i tr\u01b0\u1edbc d\u1eef li\u1ec7u trong th\u1eddi gian &quot;k\u1ebft n\u1ed1i t\u1ed1t&quot;.<\/li>\n<\/ul>\n<p><strong>Ph\u01b0\u01a1ng \u00e1n 2: Gh\u00e9p n\u1ed1i OCSP (n\u1ebfu kh\u1ea3 thi)<\/strong><\/p>\n<p>Vi\u1ec7c gh\u00e9p n\u1ed1i OCSP chuy\u1ec3n vi\u1ec7c cung c\u1ea5p b\u1eb1ng ch\u1ee9ng thu h\u1ed3i ch\u1ee9ng ch\u1ec9 ra kh\u1ecfi \u0111i\u1ec3m y\u1ebfu nh\u1ea5t, gi\u1ea3m s\u1ef1 ph\u1ee5 thu\u1ed9c tr\u1ef1c ti\u1ebfp v\u00e0o c\u01a1 s\u1edf h\u1ea1 t\u1ea7ng c\u1ee7a CA trong qu\u00e1 tr\u00ecnh thi\u1ebft l\u1eadp phi\u00ean.<\/p>\n<p><strong>Ghi ch\u00fa tri\u1ec3n khai (th\u1ef1c t\u1ebf nh\u00fang):<\/strong> Trong m\u00f4i tr\u01b0\u1eddng EVSE, h\u00e3y x\u00e1c nh\u1eadn h\u1ed7 tr\u1ee3 m\u1edf r\u1ed9ng li\u00ean quan \u0111\u1ebfn vi\u1ec7c k\u1eb9p d\u00e2y.<br \/>\ntrong ng\u0103n x\u1ebfp TLS nh\u00fang v\u00e0 c\u1ea5u h\u00ecnh b\u1ea3n d\u1ef1ng c\u1ee7a b\u1ea1n (v\u00ed d\u1ee5: mbedTLS, wolfSSL) v\u00e0 x\u00e1c th\u1ef1c ho\u1ea1t \u0111\u1ed9ng tr\u00ean ph\u1ea7n c\u1ee9ng c\u0169,<br \/>\nv\u00ec m\u1ee9c \u0111\u1ed9 ho\u00e0n thi\u1ec7n t\u00ednh n\u0103ng v\u00e0 c\u00e1c r\u00e0ng bu\u1ed9c v\u1ec1 b\u1ed9 nh\u1edb\/h\u1ec7 \u0111i\u1ec1u h\u00e0nh th\u1eddi gian th\u1ef1c (RTOS) kh\u00e1c nhau.<\/p>\n<p><strong>M\u00f4 h\u00ecnh 3: Qu\u1ea3n tr\u1ecb \u1ee7y th\u00e1c \u0111a g\u1ed1c<\/strong><\/p>\n<ul>\n<li>K\u00eanh c\u1eadp nh\u1eadt kho l\u01b0u tr\u1eef ch\u1ee9ng ch\u1ec9 tin c\u1eady th\u1ed1ng nh\u1ea5t cho nhi\u1ec1u thi\u1ebft b\u1ecb g\u1ed1c (OEM) kh\u00e1c nhau.<\/li>\n<li>C\u1eadp nh\u1eadt Canary v\u00e0 kh\u00f4i ph\u1ee5c khi l\u1ed7i x\u00e2y d\u1ef1ng \u0111\u01b0\u1eddng d\u1eabn t\u0103ng \u0111\u1ed9t bi\u1ebfn.<\/li>\n<\/ul>\n<p><strong>M\u00f4 h\u00ecnh 4: Qu\u1ea3n tr\u1ecb \u0111\u1ed3ng b\u1ed9 th\u1eddi gian (kh\u00f4ng th\u1ec3 th\u01b0\u01a1ng l\u01b0\u1ee3ng)<\/strong><\/p>\n<ul>\n<li>Ch\u00ednh s\u00e1ch NTP (ho\u1eb7c PTP n\u1ebfu ph\u00f9 h\u1ee3p)<\/li>\n<li>Gi\u00e1m s\u00e1t s\u1ef1 tr\u00f4i d\u1ea1t v\u00e0 ng\u01b0\u1ee1ng c\u1ea3nh b\u00e1o<\/li>\n<li>H\u00e0nh vi \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh khi \u0111\u1ed3ng h\u1ed3 kh\u00f4ng \u0111\u00e1ng tin c\u1eady.<\/li>\n<\/ul>\n<h2>Kh\u1ea3 n\u0103ng ho\u1ea1t \u0111\u1ed9ng ngo\u1ea1i tuy\u1ebfn: duy tr\u00ec ch\u1ee9c n\u0103ng Plug &amp; Charge ngay c\u1ea3 khi m\u1ea5t k\u1ebft n\u1ed1i gi\u1eefa thi\u1ebft b\u1ecb \u0111\u1ea7u cu\u1ed1i v\u00e0 \u0111\u00e1m m\u00e2y.<\/h2>\n<h3>T\u00ednh li\u00ean t\u1ee5c ngo\u1ea1i tuy\u1ebfn l\u00e0 g\u00ec (v\u00e0 kh\u00f4ng ph\u1ea3i l\u00e0 g\u00ec)<\/h3>\n<p>T\u00ednh li\u00ean t\u1ee5c ngo\u1ea1i tuy\u1ebfn kh\u00f4ng ph\u1ea3i l\u00e0 &quot;b\u1ecf qua PKI&quot;. \u0110\u00f3 l\u00e0 s\u1ef1 suy gi\u1ea3m c\u00f3 ki\u1ec3m so\u00e1t nh\u1eb1m b\u1ea3o to\u00e0n:<\/p>\n<ul>\n<li>T\u00ednh to\u00e0n v\u1eb9n c\u1ee7a kh\u00f3a v\u00e0 kho l\u01b0u tr\u1eef tin c\u1eady<\/li>\n<li>Kh\u1ea3 n\u0103ng ki\u1ec3m to\u00e1n \u0111\u1ed1i v\u1edbi vi\u1ec7c l\u1eadp h\u00f3a \u0111\u01a1n v\u00e0 x\u1eed l\u00fd s\u1ef1 c\u1ed1.<\/li>\n<li>Gi\u1edbi h\u1ea1n r\u00f5 r\u00e0ng v\u1ec1 nh\u1eefng g\u00ec c\u00f3 th\u1ec3 \u0111\u01b0\u1ee3c x\u00e1c th\u1ef1c c\u1ee5c b\u1ed9 (v\u00e0 trong bao l\u00e2u)<\/li>\n<\/ul>\n<h3>B\u1ed9 \u0111i\u1ec1u khi\u1ec3n c\u1ee5c b\u1ed9 \/ M\u00e1y ch\u1ee7 proxy bi\u00ean \u0111\u00f3ng vai tr\u00f2 l\u00e0 c\u00e1c y\u1ebfu t\u1ed1 c\u01a1 b\u1ea3n v\u1ec1 t\u00ednh kh\u1ea3 d\u1ee5ng.<\/h3>\n<ul>\n<li>Duy tr\u00ec b\u1ed9 nh\u1edb \u0111\u1ec7m tin c\u1eady c\u1ee5c b\u1ed9 (neo\/trung gian\/CRL)<\/li>\n<li>Th\u1ef1c thi c\u00e1c ch\u00ednh s\u00e1ch \u1ee7y quy\u1ec1n \u0111\u1ecba ph\u01b0\u01a1ng c\u00f3 gi\u1edbi h\u1ea1n.<\/li>\n<li>L\u01b0u tr\u1eef d\u1eef li\u1ec7u \u0111o l\u01b0\u1eddng\/ghi nh\u1eadt k\u00fd \u0111\u1ec3 \u0111\u1ed1i chi\u1ebfu sau n\u00e0y.<\/li>\n<li>Gi\u1ea3m ph\u1ea1m vi \u1ea3nh h\u01b0\u1edfng c\u1ee7a m\u1ea1ng WAN b\u1eb1ng c\u00e1ch ho\u1ea1t \u0111\u1ed9ng nh\u01b0 \u0111i\u1ec3m cu\u1ed1i c\u1ee5c b\u1ed9 cho tr\u1ea1m s\u1ea1c xe \u0111i\u1ec7n (EVSE).<\/li>\n<\/ul>\n<blockquote style=\"margin: 16px 0; padding: 12px 16px; border-left: 4px solid #ccc;\"><p><strong>H\u00ecnh 2 (H\u00ecnh \u1ea3nh minh h\u1ecda \u0111\u01b0\u1ee3c \u0111\u1ec1 xu\u1ea5t): Proxy bi\u00ean ho\u1ea1t \u0111\u1ed9ng nh\u01b0 m\u1ed9t b\u1ed9 nh\u1edb \u0111\u1ec7m tin c\u1eady t\u1ea1i c\u00e1c \u0111\u1ecba \u0111i\u1ec3m c\u00f3 m\u1ea1ng y\u1ebfu.<\/strong><\/p>\n<p>(Hi\u1ec3n th\u1ecb c\u00e1c tr\u1ea1m s\u1ea1c EVSE k\u1ebft n\u1ed1i v\u1edbi m\u00e1y ch\u1ee7 proxy\/b\u1ed9 \u0111i\u1ec1u khi\u1ec3n c\u1ee5c b\u1ed9 t\u1ea1i ch\u1ed7. M\u00e1y ch\u1ee7 proxy duy tr\u00ec c\u00e1c \u0111i\u1ec3m neo\/trung gian tin c\u1eady \u0111\u01b0\u1ee3c l\u01b0u trong b\u1ed9 nh\u1edb cache.)<br \/>\n(H\u1ec7 th\u1ed1ng n\u00e0y l\u00ean l\u1ecbch l\u00e0m m\u1edbi CRL, gi\u00e1m s\u00e1t \u0111\u1ed3ng b\u1ed9 th\u1eddi gian v\u00e0 ghi nh\u1eadt k\u00fd b\u1eb1ng ch\u1ee9ng; n\u00f3 \u0111\u1ec7m c\u00e1c s\u1ef1 ki\u1ec7n l\u00ean CSMS\/PKI \u0111\u00e1m m\u00e2y khi \u0111\u01b0\u1eddng truy\u1ec1n kh\u00f4ng \u1ed5n \u0111\u1ecbnh.)<\/p>\n<p><strong>Th\u00f4ng \u0111i\u1ec7p c\u1ed1t l\u00f5i:<\/strong> C\u00e1c m\u00e1y ch\u1ee7 proxy bi\u00ean gi\u00fap gi\u1ea3m s\u1ef1 ph\u1ee5 thu\u1ed9c tr\u1ef1c ti\u1ebfp v\u00e0o c\u00e1c \u0111i\u1ec3m cu\u1ed1i OCSP\/CRL b\u00ean ngo\u00e0i v\u00e0 cho ph\u00e9p duy tr\u00ec ho\u1ea1t \u0111\u1ed9ng ngo\u1ea1i tuy\u1ebfn c\u00f3 ki\u1ec3m so\u00e1t m\u00e0 kh\u00f4ng c\u1ea7n b\u1ecf qua PKI.<\/p><\/blockquote>\n<h2>CRA &amp; VMP: T\u1eeb h\u1ea1n ch\u00f3t b\u00e1o c\u00e1o th\u00e1ng 9 n\u0103m 2026 \u0111\u1ebfn m\u00f4 h\u00ecnh ho\u1ea1t \u0111\u1ed9ng c\u00f3 th\u1ec3 ki\u1ec3m to\u00e1n<\/h2>\n<h3>Quy t\u1eafc b\u00e1o c\u00e1o c\u1ee7a CRA: thi\u1ebft k\u1ebf theo h\u1ec7 th\u1ed1ng 24 gi\u1edd\/72 gi\u1edd.<\/h3>\n<p>C\u00e1c quy \u0111\u1ecbnh b\u00e1o c\u00e1o c\u1ee7a CRA y\u00eau c\u1ea7u c\u00e1c nh\u00e0 s\u1ea3n xu\u1ea5t ph\u1ea3i th\u00f4ng b\u00e1o v\u1ec1 c\u00e1c l\u1ed7 h\u1ed5ng \u0111ang b\u1ecb khai th\u00e1c v\u00e0 c\u00e1c s\u1ef1 c\u1ed1 nghi\u00eam tr\u1ecdng g\u00e2y \u1ea3nh h\u01b0\u1edfng.<br \/>\nV\u1ec1 v\u1ea5n \u0111\u1ec1 b\u1ea3o m\u1eadt c\u1ee7a c\u00e1c s\u1ea3n ph\u1ea9m c\u00f3 y\u1ebfu t\u1ed1 k\u1ef9 thu\u1eadt s\u1ed1:<\/p>\n<ul>\n<li><strong>C\u1ea3nh b\u00e1o s\u1edbm trong v\u00f2ng 24 gi\u1edd<\/strong> tr\u1edf n\u00ean nh\u1eadn th\u1ee9c<\/li>\n<li><strong>Th\u00f4ng b\u00e1o \u0111\u1ea7y \u0111\u1ee7 trong v\u00f2ng 72 gi\u1edd.<\/strong><\/li>\n<li><strong>B\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng<\/strong> trong c\u00e1c khung th\u1eddi gian \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh (t\u00f9y thu\u1ed9c v\u00e0o lo\u1ea1i s\u1ef1 c\u1ed1)<\/li>\n<\/ul>\n<p>S\u1ef1 gi\u00e1n \u0111o\u1ea1n quy m\u00f4 l\u1edbn \u0111\u1ed1i v\u1edbi h\u1ec7 th\u1ed1ng Plug &amp; Charge do vi\u1ec7c thu h\u1ed3i h\u00e0ng lo\u1ea1t gi\u1ea5y ph\u00e9p ho\u1eb7c s\u1ef1 x\u00e2m ph\u1ea1m \u0111i\u1ec3m neo tin c\u1eady g\u00e2y ra. <strong>c\u00f3 th\u1ec3 \u0111\u1ee7 \u0111i\u1ec1u ki\u1ec7n<\/strong><br \/>\nM\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh t\u00f9y thu\u1ed9c v\u00e0o t\u00e1c \u0111\u1ed9ng v\u00e0 b\u1eb1ng ch\u1ee9ng khai th\u00e1c.<\/p>\n<h3>Quy tr\u00ecnh qu\u1ea3n l\u00fd l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt (VMP): kh\u1ea3 n\u0103ng t\u1ed1i thi\u1ec3u c\u1ea7n thi\u1ebft<\/h3>\n<ol>\n<li><strong>S\u1ef1 th\u1eadt v\u1ec1 h\u1ea1m \u0111\u1ed9i:<\/strong> Ki\u1ec3m k\u00ea t\u00e0i s\u1ea3n + phi\u00ean b\u1ea3n (ph\u1ea7n m\u1ec1m EVSE, \u1ea3nh b\u1ed9 \u0111i\u1ec1u khi\u1ec3n, phi\u00ean b\u1ea3n kho l\u01b0u tr\u1eef tin c\u1eady).<\/li>\n<li><strong>T\u00edch h\u1ee3p SBOM (\u0111\u1ed9ng):<\/strong> SBOM \u0111\u01b0\u1ee3c \u00e1nh x\u1ea1 t\u1edbi c\u00e1c th\u00e0nh ph\u1ea7n c\u00f3 th\u1ec3 tri\u1ec3n khai; li\u00ean t\u1ee5c t\u01b0\u01a1ng quan v\u1edbi th\u00f4ng tin t\u00ecnh b\u00e1o v\u1ec1 l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt.<\/li>\n<li><strong>Qu\u1ea3n l\u00fd r\u1ee7i ro d\u1ef1a tr\u00ean VEX:<\/strong> Duy tr\u00ec c\u00e1c tuy\u00ean b\u1ed1 VEX \u0111\u1ec3 ph\u00e2n bi\u1ec7t gi\u1eefa &quot;c\u00f3 m\u1eb7t nh\u01b0ng kh\u00f4ng th\u1ec3 khai th\u00e1c&quot; v\u00e0 &quot;c\u00f3 th\u1ec3 khai th\u00e1c trong h\u1ec7 th\u1ed1ng c\u1ee7a ch\u00fang t\u00f4i&quot;, cho ph\u00e9p x\u00e1c \u0111\u1ecbnh ph\u1ea1m vi m\u1ed9t c\u00e1ch \u0111\u00e1ng tin c\u1eady trong khung th\u1eddi gian T+24h.<\/li>\n<li><strong>V\u00ec sao VEX l\u1ea1i quan tr\u1ecdng trong h\u1ec7 th\u1ed1ng gi\u1edd 24 ti\u1ebfng:<\/strong> SBOM cho b\u1ea1n bi\u1ebft nh\u1eefng g\u00ec \u0111ang hi\u1ec7n di\u1ec7n; VEX gi\u00fap b\u1ea1n x\u00e1c \u0111\u1ecbnh nh\u1eefng g\u00ec \u0111ang hi\u1ec7n di\u1ec7n. <strong>c\u00f3 th\u1ec3 khai th\u00e1c<\/strong>, gi\u00fap gi\u1ea3m thi\u1ec3u b\u00e1o \u0111\u1ed9ng gi\u1ea3 v\u00e0 ng\u0103n ch\u1eb7n c\u00e1c nh\u00f3m v\u1eadn h\u00e0nh theo \u0111u\u1ed5i nh\u1eefng t\u00edn hi\u1ec7u nhi\u1ec5u kh\u00f4ng th\u1ec3 khai th\u00e1c \u0111\u01b0\u1ee3c.<\/li>\n<li><strong>Ti\u1ebfp nh\u1eadn v\u00e0 ph\u00e2n lo\u1ea1i:<\/strong> Th\u00f4ng b\u00e1o t\u1eeb nh\u00e0 cung c\u1ea5p, CVE, ph\u00e1t hi\u1ec7n n\u1ed9i b\u1ed9; \u01b0u ti\u00ean kh\u1ea3 n\u0103ng khai th\u00e1c + m\u1ee9c \u0111\u1ed9 ph\u01a1i nhi\u1ec5m.<\/li>\n<li><strong>Quy tr\u00ecnh l\u1eadp k\u1ebf ho\u1ea1ch T+24h:<\/strong> S\u1eed d\u1ee5ng SBOM + VEX + \u0111\u1ed1i chi\u1ebfu d\u1eef li\u1ec7u t\u1ed3n kho \u0111\u1ec3 x\u00e1c \u0111\u1ecbnh c\u00e1c qu\u1ea7n th\u1ec3 b\u1ecb \u1ea3nh h\u01b0\u1edfng; \u0111\u01b0a ra quy\u1ebft \u0111\u1ecbnh ng\u0103n ch\u1eb7n ban \u0111\u1ea7u; thu th\u1eadp b\u1eb1ng ch\u1ee9ng.<\/li>\n<li><strong>Quy tr\u00ecnh th\u00f4ng b\u00e1o T+72h:<\/strong> Ph\u1ea1m vi \u0111\u00e3 \u0111\u01b0\u1ee3c x\u00e1c nh\u1eadn, c\u00e1c bi\u1ec7n ph\u00e1p gi\u1ea3m thi\u1ec3u, k\u1ebf ho\u1ea1ch tri\u1ec3n khai\/thu h\u1ed3i, h\u1ed3 s\u01a1 li\u00ean l\u1ea1c.<\/li>\n<li><strong>Quy tr\u00ecnh l\u1eadp b\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng:<\/strong> B\u1eb1ng ch\u1ee9ng x\u00e1c th\u1ef1c + nguy\u00ean nh\u00e2n g\u1ed1c r\u1ec5 + c\u1ea3i ti\u1ebfn ph\u00f2ng ng\u1eeba sau khi c\u00f3 bi\u1ec7n ph\u00e1p kh\u1eafc ph\u1ee5c.<\/li>\n<li><strong>K\u1ef9 thu\u1eadt \u0111i\u1ec1u ch\u1ec9nh nh\u1ecbp \u0111\u1ed9 v\u00e1 l\u1ed7i:<\/strong> Tri\u1ec3n khai theo t\u1eebng giai \u0111o\u1ea1n, k\u1ebf ho\u1ea1ch ho\u00e0n t\u00e1c, ch\u1ee9ng t\u1eeb \u0111\u00e3 k\u00fd, c\u00e1c c\u1ed5ng x\u00e1c minh.<\/li>\n<li><strong>Th\u1ef1c thi chu\u1ed7i tin c\u1eady:<\/strong> Kh\u1edfi \u0111\u1ed9ng an to\u00e0n + c\u1eadp nh\u1eadt firmware an to\u00e0n; kh\u00f3a ch\u1eef k\u00fd \u0111\u01b0\u1ee3c b\u1ea3o v\u1ec7 trong HSM\/c\u00e1c ph\u1ea7n t\u1eed b\u1ea3o m\u1eadt.<\/li>\n<li><strong>Ghi nh\u1eadt k\u00fd theo ph\u01b0\u01a1ng ph\u00e1p \u01b0u ti\u00ean b\u1eb1ng ch\u1ee9ng:<\/strong> C\u00e1c s\u1ef1 ki\u1ec7n ch\u1ee9ng ch\u1ec9, thay \u0111\u1ed5i kho l\u01b0u tr\u1eef tin c\u1eady, l\u1ed7i thu h\u1ed3i ch\u1ee9ng ch\u1ec9, tr\u1ea1ng th\u00e1i \u0111\u1ed3ng b\u1ed9 th\u1eddi gian.<\/li>\n<\/ol>\n<p><strong>T\u00ecnh hu\u1ed1ng tin t\u01b0\u1edfng m\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng cao:<\/strong> N\u1ebfu vi\u1ec7c thu h\u1ed3i \u0111\u01b0\u1ee3c k\u00edch ho\u1ea1t do kh\u00f3a g\u1ed1c ho\u1eb7c kh\u00f3a c\u1ea5p ph\u00e1t b\u1ecb x\u00e2m ph\u1ea1m,<br \/>\nH\u00e3y x\u1eed l\u00fd s\u1ef1 c\u1ed1 n\u00e0y nh\u01b0 m\u1ed9t s\u1ef1 c\u1ed1 b\u1ea3o m\u1eadt nghi\u00eam tr\u1ecdng b\u1eadc nh\u1ea5t, \u0111\u00f2i h\u1ecfi ph\u1ea3i ng\u0103n ch\u1eb7n ngay l\u1eadp t\u1ee9c v\u00e0 th\u1ef1c hi\u1ec7n c\u00e1c h\u00e0nh \u0111\u1ed9ng b\u1ea3o m\u1eadt tr\u00ean to\u00e0n h\u1ec7 th\u1ed1ng.<br \/>\nv\u00e0 s\u1ef1 s\u1eb5n s\u00e0ng b\u00e1o c\u00e1o ph\u00f9 h\u1ee3p v\u1edbi CRA t\u00f9y thu\u1ed9c v\u00e0o b\u1eb1ng ch\u1ee9ng v\u1ec1 t\u00e1c \u0111\u1ed9ng v\u00e0 khai th\u00e1c.<\/p>\n<h3>Danh s\u00e1ch ki\u1ec3m tra \u0111\u1ebfm ng\u01b0\u1ee3c th\u1eddi gian \u1ee9ng ph\u00f3 s\u1ef1 c\u1ed1 c\u1ee7a CRA (M\u1eabu v\u1eadn h\u00e0nh)<\/h3>\n<h4>T+0 (Ph\u00e1t hi\u1ec7n \/ Nh\u1eadn bi\u1ebft)<\/h4>\n<ul>\n<li>\u0110\u00f3ng b\u0103ng b\u1eb1ng ch\u1ee9ng: nh\u1eadt k\u00fd, s\u1ef1 ki\u1ec7n ch\u1ee9ng ch\u1ec9, phi\u00ean b\u1ea3n kho l\u01b0u tr\u1eef tin c\u1eady, tr\u1ea1ng th\u00e1i \u0111\u1ed3ng b\u1ed9 th\u1eddi gian<\/li>\n<li>X\u00e1c \u0111\u1ecbnh c\u00e1c b\u1ec1 m\u1eb7t b\u1ecb \u1ea3nh h\u01b0\u1edfng: ph\u1ea7n m\u1ec1m EVSE, b\u1ed9 \u0111i\u1ec1u khi\u1ec3n c\u1ee5c b\u1ed9, \u0111i\u1ec3m cu\u1ed1i TLS ph\u00eda m\u00e1y ch\u1ee7.<\/li>\n<li>Li\u00ean h\u1ec7 v\u1edbi nh\u00e0 cung c\u1ea5p PKI \/ b\u1ed9 ph\u1eadn b\u1ea3o m\u1eadt m\u00e1y ch\u1ee7<\/li>\n<\/ul>\n<h4>T+24h (S\u1eb5n s\u00e0ng c\u1ea3nh b\u00e1o s\u1edbm)<\/h4>\n<ul>\n<li><strong>M\u1ee5c ti\u00eau c\u1ed1t l\u00f5i:<\/strong> S\u1eed d\u1ee5ng <strong>SBOM + VEX + kho \u0111\u1ed9i xe<\/strong> X\u00e1c \u0111\u1ecbnh d\u00e2n s\u1ed1 b\u1ecb \u1ea3nh h\u01b0\u1edfng v\u00e0 \u0111\u01b0a ra c\u1ea3nh b\u00e1o s\u1edbm d\u1ef1a tr\u00ean b\u1eb1ng ch\u1ee9ng.<\/li>\n<li>Quy\u1ebft \u0111\u1ecbnh bi\u1ec7n ph\u00e1p ng\u0103n ch\u1eb7n: thu h\u1ed3i\/xoay v\u00f2ng, kh\u00f4i ph\u1ee5c kho l\u01b0u tr\u1eef tin c\u1eady, c\u00e1ch ly trang web<\/li>\n<li>D\u1ef1 th\u1ea3o g\u00f3i c\u1ea3nh b\u00e1o s\u1edbm: ph\u1ea1m vi, c\u00e1c bi\u1ec7n ph\u00e1p gi\u1ea3m thi\u1ec3u \u0111ang \u0111\u01b0\u1ee3c ti\u1ebfn h\u00e0nh, l\u1eadp tr\u01b0\u1eddng t\u1ea1m th\u1eddi<\/li>\n<\/ul>\n<h4>T+72h (S\u1eb5n s\u00e0ng th\u00f4ng b\u00e1o \u0111\u1ea7y \u0111\u1ee7)<\/h4>\n<ul>\n<li>X\u00e1c \u0111\u1ecbnh c\u00e1c nh\u00f3m d\u00e2n c\u01b0 b\u1ecb \u1ea3nh h\u01b0\u1edfng theo khu v\u1ef1c\/\u0111\u1ecba \u0111i\u1ec3m; cung c\u1ea5p k\u1ebf ho\u1ea1ch kh\u1eafc ph\u1ee5c v\u00e0 ph\u01b0\u01a1ng ph\u00e1p tri\u1ec3n khai.<\/li>\n<li>L\u1eadp bi\u00ean b\u1ea3n li\u00ean l\u1ea1c v\u1edbi kh\u00e1ch h\u00e0ng\/nh\u00e2n vi\u00ean v\u00e0 ghi ch\u00e9p c\u00e1c v\u1ea5n \u0111\u1ec1 c\u1ea7n gi\u1ea3i quy\u1ebft.<\/li>\n<\/ul>\n<h4>C\u1eeda s\u1ed5 b\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng<\/h4>\n<ul>\n<li>N\u1ed9p b\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng ph\u00f9 h\u1ee3p v\u1edbi c\u00e1c y\u00eau c\u1ea7u c\u1ee7a CRA (th\u1eddi gian t\u00f9y thu\u1ed9c v\u00e0o lo\u1ea1i s\u1ef1 c\u1ed1).<\/li>\n<li>B\u1eb1ng ch\u1ee9ng x\u00e1c th\u1ef1c sau khi s\u1eeda l\u1ed7i + b\u00e0i h\u1ecdc kinh nghi\u1ec7m<\/li>\n<\/ul>\n<h2>\u0110\u1ecbnh l\u01b0\u1ee3ng chi ph\u00ed v\u00e0 r\u1ee7i ro (C\u00e1c m\u1eabu b\u1ea1n c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng cho \u0111\u1ed9i xe c\u1ee7a m\u00ecnh)<\/h2>\n<h3>M\u00f4 h\u00ecnh chi ph\u00ed lao \u0111\u1ed9ng gia h\u1ea1n th\u1ee7 c\u00f4ng<\/h3>\n<p>Cho ph\u00e9p:<\/p>\n<ul>\n<li><code>N<\/code> = s\u1ed1 l\u01b0\u1ee3ng \u0111i\u1ec3m cu\u1ed1i TLS (EVSE + b\u1ed9 \u0111i\u1ec1u khi\u1ec3n + c\u1ed5ng + c\u00e1c n\u00fat ph\u1ee5 tr\u1ee3 \u0111\u01b0\u1ee3c qu\u1ea3n l\u00fd)<\/li>\n<li><code>L<\/code> = th\u1eddi h\u1ea1n hi\u1ec7u l\u1ef1c ch\u1ee9ng ch\u1ec9 (ng\u00e0y)<\/li>\n<li><code>t<\/code> = th\u1eddi gian l\u00e0m vi\u1ec7c c\u1ee7a con ng\u01b0\u1eddi cho m\u1ed7i l\u1ea7n gia h\u1ea1n (gi\u1edd)<\/li>\n<li><code>c<\/code> = Chi ph\u00ed nh\u00e2n c\u00f4ng tr\u1ecdn g\u00f3i (USD\/gi\u1edd)<\/li>\n<\/ul>\n<pre style=\"background: #f6f8fa; padding: 12px; overflow: auto;\"><code>Chi ph\u00ed lao \u0111\u1ed9ng \u2248 N \u00d7 (365 \/ L) \u00d7 t \u00d7 c<\/code><\/pre>\n<h3>M\u00f4 h\u00ecnh r\u1ee7i ro ng\u1eebng ho\u1ea1t \u0111\u1ed9ng (h\u1ebft h\u1ea1n ho\u1eb7c tri\u1ec3n khai th\u1ea5t b\u1ea1i)<\/h3>\n<p>Cho ph\u00e9p:<\/p>\n<ul>\n<li><code>P_miss<\/code> = x\u00e1c su\u1ea5t b\u1ecf l\u1ee1\/th\u1ea5t b\u1ea1i trong vi\u1ec7c gia h\u1ea1n m\u1ed7i chu k\u1ef3<\/li>\n<li><code>H_down<\/code> = s\u1ed1 gi\u1edd ng\u1eebng ho\u1ea1t \u0111\u1ed9ng d\u1ef1 ki\u1ebfn cho m\u1ed7i s\u1ef1 c\u1ed1<\/li>\n<li><code>Gi\u1edd C<\/code> = T\u00e1c \u0111\u1ed9ng kinh doanh theo gi\u1edd (doanh thu b\u1ecb m\u1ea5t, ti\u1ec1n ph\u1ea1t, t\u00edn d\u1ee5ng SLA)<\/li>\n<\/ul>\n<pre style=\"background: #f6f8fa; padding: 12px; overflow: auto;\"><code>Chi ph\u00ed m\u1ea5t \u0111i\u1ec7n \u2248 P_miss \u00d7 H_down \u00d7 C_hour<\/code><\/pre>\n<h2>H\u01b0\u1edbng d\u1eabn x\u1eed l\u00fd s\u1ef1 c\u1ed1: Khi qu\u00e1 tr\u00ecnh ki\u1ec3m tra thu h\u1ed3i tr\u1ef1c tuy\u1ebfn th\u1ea5t b\u1ea1i (OCSP\/CRL Timeout)<\/h2>\n<ol>\n<li><strong>Khu v\u1ef1c c\u00f4ng c\u1ed9ng hay kho\/b\u00e3i \u0111\u1eadu xe ri\u00eang?<\/strong>\n<ul>\n<li>C\u00f4ng khai \u2192 \u01b0u ti\u00ean <strong>Th\u1ea5t b\u1ea1i ho\u00e0n to\u00e0n<\/strong> (ho\u1eb7c ch\u1ec9 \u0111\u01b0\u1ee3c \u00e2n x\u00e1 m\u1ed9t c\u00e1ch nghi\u00eam ng\u1eb7t v\u1edbi b\u1eb1ng ch\u1ee9ng k\u00e8m theo c\u00e1c bi\u1ec7n ph\u00e1p ki\u1ec3m so\u00e1t b\u00f9 tr\u1eeb)<\/li>\n<li>\u0110\u1ed9i xe\/kho b\u00e3i \u2192 <strong>\u00c2n \u0111i\u1ec3n k\u00e8m b\u1eb1ng ch\u1ee9ng<\/strong> c\u00f3 th\u1ec3 ch\u1ea5p nh\u1eadn \u0111\u01b0\u1ee3c \u0111\u1ed1i v\u1edbi c\u00e1c c\u1eeda s\u1ed5 c\u00f3 k\u00edch th\u01b0\u1edbc h\u1ea1n ch\u1ebf.<\/li>\n<\/ul>\n<\/li>\n<li><strong>Li\u1ec7u \u0111\u1ed9 tin c\u1eady c\u1ee7a m\u1ea1ng c\u00f3 th\u1ec3 d\u1ef1 \u0111o\u00e1n \u0111\u01b0\u1ee3c kh\u00f4ng?<\/strong>\n<ul>\n<li>C\u00f3 \u2192 OCSP\/CRL tr\u1ef1c tuy\u1ebfn + gi\u00e1m s\u00e1t<\/li>\n<li>Kh\u00f4ng \u2192 <strong>X\u00e1c th\u1ef1c tr\u01b0\u1edbc \u1edf bi\u00ean + b\u1ed9 nh\u1edb \u0111\u1ec7m<\/strong> (C\u1eeda s\u1ed5 l\u00e0m m\u1edbi CRL, chu\u1ed7i b\u1ed9 nh\u1edb \u0111\u1ec7m)<\/li>\n<\/ul>\n<\/li>\n<li><strong>B\u1ea1n c\u00f3 th\u1ec3 gi\u1ea3m s\u1ef1 ph\u1ee5 thu\u1ed9c v\u00e0o internet trong su\u1ed1t bu\u1ed5i h\u1ecdc kh\u00f4ng?<\/strong>\n<ul>\n<li>N\u1ebfu kh\u1ea3 thi \u2192 \u00e1p d\u1ee5ng <strong>M\u1eabu b\u1ea5m ghim OCSP<\/strong> (\u0111\u1ea9y b\u1eb1ng ch\u1ee9ng s\u00e1t m\u00e9p h\u01a1n)<\/li>\n<\/ul>\n<\/li>\n<li><strong>B\u1ea1n c\u00f3 h\u1ec7 th\u1ed1ng ghi nh\u1eadt k\u00fd b\u1eb1ng ch\u1ee9ng v\u00e0 qu\u1ea3n tr\u1ecb \u0111\u1ed3ng b\u1ed9 th\u1eddi gian kh\u00f4ng?<\/strong>\n<ul>\n<li>N\u1ebfu kh\u00f4ng \u2192 h\u00e3y kh\u1eafc ph\u1ee5c nh\u1eefng v\u1ea5n \u0111\u1ec1 n\u00e0y tr\u01b0\u1edbc; c\u00e1c ch\u00ednh s\u00e1ch \u1edf ch\u1ebf \u0111\u1ed9 suy gi\u1ea3m r\u1ea5t kh\u00f3 \u0111\u1ec3 duy tr\u00ec n\u1ebfu thi\u1ebfu ch\u00fang.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n<h2>Ma tr\u1eadn tr\u00e1ch nhi\u1ec7m th\u1ef1c ti\u1ec5n (C\u00e1c gi\u1edbi h\u1ea1n ng\u0103n ng\u1eeba s\u1ef1 c\u1ed1)<\/h2>\n<table style=\"border-collapse: collapse; width: 100%;\" border=\"1\" cellspacing=\"0\" cellpadding=\"8\">\n<thead>\n<tr>\n<th>Vai tr\u00f2<\/th>\n<th>Ph\u00e1t h\u00e0nh<\/th>\n<th>X\u00e1c th\u1ef1c<\/th>\n<th>B\u00e1o c\u00e1o<\/th>\n<th>T\u1ea7n su\u1ea5t c\u1eadp nh\u1eadt<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr>\n<td><strong>CPO<\/strong><\/td>\n<td>Chi\u1ebfn l\u01b0\u1ee3c TLS\/nh\u1eadn d\u1ea1ng; th\u1ef1c thi gia h\u1ea1n t\u1ef1 \u0111\u1ed9ng; duy tr\u00ec kho thi\u1ebft b\u1ecb \u0111\u1ea7u cu\u1ed1i; l\u1eadp k\u1ebf ho\u1ea1ch cho h\u00e0nh vi chuy\u1ec3n \u0111\u1ed5i CA (c\u1ea5p ch\u1ee9ng ch\u1ec9 trong 199 ng\u00e0y k\u1ec3 t\u1eeb ng\u00e0y 24 th\u00e1ng 2 cho DigiCert)<\/td>\n<td>X\u00e1c \u0111\u1ecbnh ch\u00ednh s\u00e1ch l\u1ed7i c\u1ee9ng\/m\u1ec1m; t\u00ednh c\u1eadp nh\u1eadt c\u1ee7a hi\u1ec7n v\u1eadt thu h\u1ed3i; <strong>Qu\u1ea3n tr\u1ecb \u0111\u1ed3ng b\u1ed9 th\u1eddi gian<\/strong> (NTP\/PTP, gi\u00e1m s\u00e1t \u0111\u1ed9 l\u1ec7ch, c\u1ea3nh b\u00e1o)<\/td>\n<td>V\u1eadn h\u00e0nh c\u00e1c quy tr\u00ecnh x\u1eed l\u00fd s\u1ef1 c\u1ed1; th\u00fac \u0111\u1ea9y s\u1ef1 s\u1eb5n s\u00e0ng b\u00e1o c\u00e1o ph\u00f9 h\u1ee3p v\u1edbi CRA (24h\/72h\/b\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng)<\/td>\n<td>Gi\u00e1m s\u00e1t li\u00ean t\u1ee5c th\u1eddi h\u1ea1n h\u1ebft h\u1ea1n; l\u00e0m m\u1edbi kho l\u01b0u tr\u1eef ch\u1ee9ng ch\u1ec9 tin c\u1eady; thay \u0111\u1ed5i kh\u1ea9n c\u1ea5p \u0111i\u1ec3m neo ch\u1ee9ng ch\u1ec9 tin c\u1eady; ki\u1ec3m to\u00e1n \u0111\u1ed3ng b\u1ed9 th\u1eddi gian.<\/td>\n<\/tr>\n<tr>\n<td><strong>C\u00e1c nh\u00e0 s\u1ea3n xu\u1ea5t thi\u1ebft b\u1ecb g\u1ed1c (OEM) tr\u1ea1m s\u1ea1c xe \u0111i\u1ec7n (EVSE)<\/strong><\/td>\n<td>L\u01b0u tr\u1eef kh\u00f3a \u0111\u01b0\u1ee3c h\u1ed7 tr\u1ee3 b\u1edfi ph\u1ea7n c\u1ee9ng; tr\u1ea1ng th\u00e1i nh\u1eadn d\u1ea1ng thi\u1ebft b\u1ecb; c\u00e1c \u0111i\u1ec3m k\u1ebft n\u1ed1i t\u1ef1 \u0111\u1ed9ng h\u00f3a; c\u00e1c nguy\u00ean t\u1eafc kh\u1edfi \u0111\u1ed9ng\/c\u1eadp nh\u1eadt an to\u00e0n.<\/td>\n<td>T\u01b0 th\u1ebf TLS; x\u00e2y d\u1ef1ng chu\u1ed7i; h\u00e0nh vi thu h\u1ed3i; qu\u1ea3n l\u00fd kho l\u01b0u tr\u1eef ch\u1ee9ng ch\u1ec9 tin c\u1eady; kh\u1edfi \u0111\u1ed9ng an to\u00e0n + chu\u1ed7i c\u1eadp nh\u1eadt ph\u1ea7n m\u1ec1m an to\u00e0n<\/td>\n<td>X\u1eed l\u00fd l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt s\u1ea3n ph\u1ea9m; th\u00f4ng b\u00e1o; g\u00f3i kh\u1eafc ph\u1ee5c; b\u00e1o c\u00e1o h\u1ed7 tr\u1ee3 v\u1eadn h\u00e0nh k\u00e8m th\u00f4ng tin k\u1ef9 thu\u1eadt.<\/td>\n<td>Ph\u00e1t h\u00e0nh \u0111\u1ecbnh k\u1ef3 + b\u1ea3n v\u00e1 kh\u1ea9n c\u1ea5p; th\u1eddi gian h\u1ed7 tr\u1ee3 \u0111\u01b0\u1ee3c x\u00e1c \u0111\u1ecbnh r\u00f5; quy tr\u00ecnh xoay v\u00f2ng kh\u00f3a.<\/td>\n<\/tr>\n<tr>\n<td><strong>Nh\u00e0 cung c\u1ea5p PKI Backend \/ V2G<\/strong><\/td>\n<td>Ph\u00e1t h\u00e0nh h\u1ec7 sinh th\u00e1i h\u1ee3p \u0111\u1ed3ng (trong ph\u1ea1m vi \u00e1p d\u1ee5ng); v\u1eadn h\u00e0nh CA\/RA; ch\u00ednh s\u00e1ch ph\u00e1t h\u00e0nh<\/td>\n<td>X\u00e1c th\u1ef1c h\u1ec7 th\u1ed1ng ph\u1ee5 tr\u1ee3; t\u00ednh kh\u1ea3 d\u1ee5ng c\u1ee7a OCSP\/CRL; qu\u1ea3n tr\u1ecb \u0111i\u1ec3m neo tin c\u1eady<\/td>\n<td>Cung c\u1ea5p th\u00f4ng tin v\u1ec1 s\u1ef1 c\u1ed1\/l\u1ed7 h\u1ed5ng; h\u1ed7 tr\u1ee3 c\u00e1c g\u00f3i b\u1eb1ng ch\u1ee9ng v\u1ec1 m\u1ed1c th\u1eddi gian c\u1ee7a CRA.<\/td>\n<td>C\u1eadp nh\u1eadt th\u01b0\u1eddng xuy\u00ean ch\u00ednh s\u00e1ch\/\u0111i\u1ec3m neo tin c\u1eady; thi\u1ebft k\u1ebf kh\u1ea3 n\u0103ng ph\u1ee5c h\u1ed3i OCSP\/CRL; gi\u00e1m s\u00e1t li\u00ean t\u1ee5c<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<h2>Thu\u1eadt ng\u1eef<\/h2>\n<ul>\n<li><strong>PKI:<\/strong> C\u01a1 s\u1edf h\u1ea1 t\u1ea7ng kh\u00f3a c\u00f4ng khai (ph\u00e1t h\u00e0nh, x\u00e1c th\u1ef1c, neo tin c\u1eady, thu h\u1ed3i)<\/li>\n<li><strong>ACME:<\/strong> M\u00f4i tr\u01b0\u1eddng qu\u1ea3n l\u00fd ch\u1ee9ng ch\u1ec9 t\u1ef1 \u0111\u1ed9ng (c\u1ea5p\/gia h\u1ea1n t\u1ef1 \u0111\u1ed9ng)<\/li>\n<li><strong>OCSP \/ CRL:<\/strong> Giao th\u1ee9c tr\u1ea1ng th\u00e1i ch\u1ee9ng ch\u1ec9 tr\u1ef1c tuy\u1ebfn \/ Danh s\u00e1ch thu h\u1ed3i ch\u1ee9ng ch\u1ec9<\/li>\n<li><strong>Ghim OCSP:<\/strong> M\u00e1y ch\u1ee7 cung c\u1ea5p b\u1eb1ng ch\u1ee9ng thu h\u1ed3i \u0111\u1ec3 gi\u1ea3m s\u1ef1 ph\u1ee5 thu\u1ed9c v\u00e0o OCSP \u0111ang ho\u1ea1t \u0111\u1ed9ng.<\/li>\n<li><strong>\u0110i\u1ec3m t\u1ef1a tin c\u1eady:<\/strong> Ch\u1ee9ng ch\u1ec9 g\u1ed1c\/trung gian m\u00e0 c\u00e1c tr\u00ecnh x\u00e1c th\u1ef1c c\u1ee7a b\u1ea1n tin t\u01b0\u1edfng<\/li>\n<li><strong>SBOM:<\/strong> Danh m\u1ee5c linh ki\u1ec7n ph\u1ea7n m\u1ec1m (danh m\u1ee5c c\u00e1c th\u00e0nh ph\u1ea7n \u0111\u1ec3 x\u00e1c \u0111\u1ecbnh ph\u1ea1m vi l\u1ed7 h\u1ed5ng)<\/li>\n<li><strong>VEX:<\/strong> Trao \u0111\u1ed5i th\u00f4ng tin v\u1ec1 kh\u1ea3 n\u0103ng khai th\u00e1c l\u1ed7 h\u1ed5ng (c\u00e1c tuy\u00ean b\u1ed1 v\u1ec1 tr\u1ea1ng th\u00e1i kh\u1ea3 n\u0103ng khai th\u00e1c)<\/li>\n<li><strong>TLS 1.3:<\/strong> C\u1ea5u h\u00ecnh TLS hi\u1ec7n \u0111\u1ea1i; qu\u00e1 tr\u00ecnh b\u1eaft tay v\u00e0 x\u00e1c th\u1ef1c ch\u1ee9ng ch\u1ec9 v\u1eabn nh\u1ea1y c\u1ea3m v\u1edbi \u0111\u1ed9 tr\u1ec5.<\/li>\n<li><strong>VMP:<\/strong> Quy tr\u00ecnh qu\u1ea3n l\u00fd l\u1ed7 h\u1ed5ng b\u1ea3o m\u1eadt (ti\u1ebfp nh\u1eadn, ph\u00e2n lo\u1ea1i, v\u00e1 l\u1ed7i, b\u00e1o c\u00e1o, b\u1eb1ng ch\u1ee9ng)<\/li>\n<\/ul>\n<h2>R\u1ee7i ro h\u01b0\u1edbng t\u1edbi t\u01b0\u01a1ng lai: S\u1ef1 linh ho\u1ea1t trong l\u0129nh v\u1ef1c ti\u1ec1n \u0111i\u1ec7n t\u1eed v\u00e0 s\u1ef1 s\u1eb5n s\u00e0ng c\u1ee7a PQC<\/h2>\n<p>M\u1eb7c d\u00f9 n\u0103m 2026 ch\u1ee7 y\u1ebfu xoay quanh th\u1eddi h\u1ea1n ng\u1eafn c\u1ee7a TLS v\u00e0 vi\u1ec7c b\u00e1o c\u00e1o theo \u0110\u1ea1o lu\u1eadt T\u00e1i \u0111\u1ea7u t\u01b0 C\u1ed9ng \u0111\u1ed3ng (CRA), nh\u01b0ng c\u01a1 s\u1edf h\u1ea1 t\u1ea7ng s\u1ea1c \u0111i\u1ec7n n\u00ean b\u1eaft \u0111\u1ea7u \u0111\u00e1nh gi\u00e1 t\u00ecnh h\u00ecnh.<br \/>\n<strong>kh\u1ea3 n\u0103ng th\u00edch \u1ee9ng m\u00e3 h\u00f3a<\/strong>V\u1edbi c\u00e1c t\u00e0i s\u1ea3n c\u00f3 tu\u1ed5i th\u1ecd d\u00e0i (xe c\u1ed9 v\u00e0 b\u1ed9 s\u1ea1c), c\u00e1c ki\u1ebfn tr\u00fac c\u1ea7n tr\u00e1nh t\u00ecnh tr\u1ea1ng ph\u1ee5 thu\u1ed9c v\u00e0o ph\u1ea7n c\u1ee9ng b\u1eb1ng c\u00e1ch \u0111\u1ea3m b\u1ea3o...<br \/>\nC\u00e1c m\u00f4-\u0111un HSM\/ph\u1ea7n t\u1eed b\u1ea3o m\u1eadt v\u00e0 c\u00e1c ng\u0103n x\u1ebfp nh\u00fang c\u00f3 th\u1ec3 h\u1ed7 tr\u1ee3 c\u00e1c b\u1ea3n c\u1eadp nh\u1eadt thu\u1eadt to\u00e1n v\u00e0 c\u1ea5u h\u00ecnh ch\u1ee9ng ch\u1ec9 trong t\u01b0\u01a1ng lai m\u00e0 kh\u00f4ng c\u1ea7n ph\u1ea3i l\u00e0m m\u1edbi ph\u1ea7n c\u1ee9ng.<\/p>\n<h2>C\u00e2u h\u1ecfi th\u01b0\u1eddng g\u1eb7p<\/h2>\n<h3>Ch\u1ee9c n\u0103ng Plug &amp; Charge c\u00f3 ho\u1ea1t \u0111\u1ed9ng khi ngo\u1ea1i tuy\u1ebfn kh\u00f4ng?<\/h3>\n<p>M\u1ed9t ph\u1ea7n l\u00e0 do thi\u1ebft k\u1ebf. P&amp;C ngo\u1ea1i tuy\u1ebfn \u0111\u01b0\u1ee3c ki\u1ec3m so\u00e1t s\u1ef1 suy gi\u1ea3m b\u1eb1ng c\u00e1ch s\u1eed d\u1ee5ng b\u1ed9 nh\u1edb \u0111\u1ec7m tin c\u1eady c\u1ee5c b\u1ed9 (neo\/trung gian\/CRL n\u1ebfu kh\u1ea3 thi),<br \/>\nC\u00e1c ch\u00ednh s\u00e1ch \u00e2n h\u1ea1n r\u00f5 r\u00e0ng v\u00e0 nh\u1eadt k\u00fd ki\u1ec3m to\u00e1n \u0111\u01b0\u1ee3c \u0111\u1ec7m \u0111\u1ec3 \u0111\u1ed1i chi\u1ebfu. N\u00f3 kh\u00f4ng n\u00ean b\u1ecf qua PKI; n\u00f3 n\u00ean gi\u1ea3m s\u1ef1 ph\u1ee5 thu\u1ed9c v\u00e0o \u0111\u00e1m m\u00e2y tr\u1ef1c ti\u1ebfp.<br \/>\n\u0111\u1ed3ng th\u1eddi b\u1ea3o \u0111\u1ea3m t\u00ednh to\u00e0n v\u1eb9n v\u00e0 kh\u1ea3 n\u0103ng ki\u1ec3m to\u00e1n.<\/p>\n<h3>Ch\u00fang ta c\u1ea7n gia h\u1ea1n ch\u1ee9ng ch\u1ec9 c\u00f3 th\u1eddi h\u1ea1n 199\/200 ng\u00e0y bao l\u00e2u m\u1ed9t l\u1ea7n?<\/h3>\n<p>L\u00ean k\u1ebf ho\u1ea1ch cho nhi\u1ec1u chu k\u1ef3 gia h\u1ea1n m\u1ed7i n\u0103m cho m\u1ed7i thi\u1ebft b\u1ecb \u0111\u1ea7u cu\u1ed1i. \u0110\u1ed1i v\u1edbi nhi\u1ec1u nh\u00e0 m\u1ea1ng, qu\u00e1 tr\u00ecnh chuy\u1ec3n \u0111\u1ed5i v\u1eadn h\u00e0nh b\u1eaft \u0111\u1ea7u t\u1eeb...<br \/>\n<strong>Ng\u00e0y 24 th\u00e1ng 2 n\u0103m 2026<\/strong> v\u00ec DigiCert s\u1ebd c\u1ea5p ch\u1ee9ng ch\u1ec9 TLS c\u00f4ng khai v\u1edbi m\u1ee9c t\u1ed1i \u0111a <strong>199 ng\u00e0y<\/strong> c\u00f3 hi\u1ec7u l\u1ef1c k\u1ec3 t\u1eeb ng\u00e0y \u0111\u00f3.<br \/>\n\u1ede c\u1ea5p \u0111\u1ed9 h\u1ec7 sinh th\u00e1i r\u1ed9ng h\u01a1n, Y\u00eau c\u1ea7u C\u01a1 b\u1ea3n x\u00e1c \u0111\u1ecbnh m\u1ed9t qu\u00e1 tr\u00ecnh gi\u1ea3m d\u1ea7n v\u1ec1 <strong>200\/100\/47 ng\u00e0y<\/strong>.<\/p>\n<h3>Nh\u1eefng y\u1ebfu t\u1ed1 n\u00e0o k\u00edch ho\u1ea1t ngh\u0129a v\u1ee5 b\u00e1o c\u00e1o cho CRA?<\/h3>\n<p>C\u00e1c quy t\u1eafc b\u00e1o c\u00e1o c\u1ee7a CRA y\u00eau c\u1ea7u <strong>C\u1ea3nh b\u00e1o s\u1edbm 24 gi\u1edd<\/strong> V\u00e0 <strong>Th\u00f4ng b\u00e1o tr\u01b0\u1edbc 72 gi\u1edd<\/strong> \u0111\u1ed1i v\u1edbi c\u00e1c l\u1ed7 h\u1ed5ng \u0111ang b\u1ecb khai th\u00e1c t\u00edch c\u1ef1c v\u00e0 c\u00e1c s\u1ef1 c\u1ed1 nghi\u00eam tr\u1ecdng,<br \/>\nc\u1ed9ng th\u00eam c\u00e1c khung th\u1eddi gian b\u00e1o c\u00e1o cu\u1ed1i c\u00f9ng. M\u1ed9t s\u1ef1 gi\u00e1n \u0111o\u1ea1n l\u1edbn v\u1ec1 l\u00f2ng tin b\u1ea3o hi\u1ec3m t\u00e0i s\u1ea3n v\u00e0 tr\u00e1ch nhi\u1ec7m d\u00e2n s\u1ef1 (v\u00ed d\u1ee5: thu h\u1ed3i \u0111\u1ed9c h\u1ea1i ho\u1eb7c x\u00e2m ph\u1ea1m x\u00e1c th\u1ef1c) c\u00f3 th\u1ec3 \u0111\u1ee7 \u0111i\u1ec1u ki\u1ec7n t\u00f9y thu\u1ed9c v\u00e0o t\u1eebng tr\u01b0\u1eddng h\u1ee3p.<br \/>\nv\u1ec1 b\u1eb1ng ch\u1ee9ng t\u00e1c \u0111\u1ed9ng v\u00e0 khai th\u00e1c; m\u1ed9t VMP s\u1eb5n s\u00e0ng cho CRA c\u1ea7n h\u1ed7 tr\u1ee3 <strong>SBOM + VEX + kho \u0111\u1ed9i xe<\/strong> Kh\u1ea3o s\u00e1t trong v\u00f2ng 24 gi\u1edd \u0111\u1ea7u ti\u00ean.<\/p>\n<\/article>","protected":false},"excerpt":{"rendered":"<p>TL;DR (Executive Action Summary) TLS cutover is a hard boundary (not a suggestion): From February 24, 2026, DigiCert will stop accepting public TLS certificate requests with validity greater than 199 days, and certificates issued from that date have a 199-day maximum validity. This is the practical cutover for many operators\u2014renewal velocity increases immediately. The 200\u2192100\u219247-day [&hellip;]<\/p>","protected":false},"author":3,"featured_media":37917,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[143,142,158,146,151,152,159,157,99,153,141,147,149,150,145,98,154,144,148,155,156],"class_list":["post-38532","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","tag-acme","tag-certificate-lifecycle","tag-cra-compliance","tag-crl","tag-cross-signing","tag-edge-proxy","tag-ev-charging-infrastructure-2026","tag-evse-security","tag-iso-15118","tag-local-controller","tag-ocsp","tag-ocsp-stapling","tag-offline-charging","tag-path-validation","tag-pki","tag-plug-charge","tag-sbom","tag-tls-1-3","tag-trust-anchors","tag-vex","tag-vulnerability-management"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>ISO 15118 Certificate Lifecycle Management in 2026 (TLS 199\/200-Day + CRA 24h\/72h)<\/title>\n<meta name=\"description\" content=\"Manage ISO 15118 certificates in 2026: 199\/200-day TLS renewals, ACME automation, revocation failures (OCSP\/CRL), offline Plug &amp; Charge, and CRA 24h\/72h reporting readiness.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.evb.com\/vi\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/\" \/>\n<meta property=\"og:locale\" content=\"vi_VN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"ISO 15118 Certificate Lifecycle Management in 2026 (TLS 199\/200-Day + CRA 24h\/72h)\" \/>\n<meta property=\"og:description\" content=\"Manage ISO 15118 certificates in 2026: 199\/200-day TLS renewals, ACME automation, revocation failures (OCSP\/CRL), offline Plug &amp; Charge, and CRA 24h\/72h reporting readiness.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.evb.com\/vi\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/\" \/>\n<meta property=\"og:site_name\" content=\"EVB\" \/>\n<meta property=\"article:published_time\" content=\"2026-01-12T07:13:14+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-01-16T12:39:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/12\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"721\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"evb\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u0110\u01b0\u1ee3c vi\u1ebft b\u1edfi\" \/>\n\t<meta name=\"twitter:data1\" content=\"evb\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u01af\u1edbc t\u00ednh th\u1eddi gian \u0111\u1ecdc\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 ph\u00fat\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":[\"Article\",\"BlogPosting\"],\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/\"},\"author\":{\"name\":\"evb\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/#\\\/schema\\\/person\\\/fe8f0137976034abdfd2ae4f8c5682d0\"},\"headline\":\"ISO 15118 Certificate Lifecycle Management in 2026: From TLS Urgency to CRA Compliance\",\"datePublished\":\"2026-01-12T07:13:14+00:00\",\"dateModified\":\"2026-01-16T12:39:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/\"},\"wordCount\":2523,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.evb.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp\",\"keywords\":[\"ACME\",\"Certificate Lifecycle\",\"CRA Compliance\",\"CRL\",\"Cross-signing\",\"Edge Proxy\",\"EV Charging Infrastructure 2026\",\"EVSE Security\",\"ISO 15118\",\"Local Controller\",\"OCSP\",\"OCSP Stapling\",\"Offline Charging\",\"Path Validation\",\"PKI\",\"Plug &amp; Charge\",\"SBOM\",\"TLS 1.3\",\"Trust Anchors\",\"VEX\",\"Vulnerability Management\"],\"articleSection\":[\"Blog\"],\"inLanguage\":\"vi\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/\",\"url\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/\",\"name\":\"ISO 15118 Certificate Lifecycle Management in 2026 (TLS 199\\\/200-Day + CRA 24h\\\/72h)\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.evb.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp\",\"datePublished\":\"2026-01-12T07:13:14+00:00\",\"dateModified\":\"2026-01-16T12:39:19+00:00\",\"description\":\"Manage ISO 15118 certificates in 2026: 199\\\/200-day TLS renewals, ACME automation, revocation failures (OCSP\\\/CRL), offline Plug & Charge, and CRA 24h\\\/72h reporting readiness.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#breadcrumb\"},\"inLanguage\":\"vi\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"vi\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.evb.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp\",\"contentUrl\":\"https:\\\/\\\/www.evb.com\\\/wp-content\\\/uploads\\\/2025\\\/12\\\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp\",\"width\":1280,\"height\":721,\"caption\":\"EVB 4 Guns 480kw dc ev charger with energy storage battery\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.evb.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"ISO 15118 Certificate Lifecycle Management in 2026: From TLS Urgency to CRA Compliance\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/#website\",\"url\":\"https:\\\/\\\/www.evb.com\\\/\",\"name\":\"EVB\",\"description\":\"Smart EV Charging &amp; Energy Storage Solutions\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.evb.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"vi\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/#organization\",\"name\":\"EVB\",\"url\":\"https:\\\/\\\/www.evb.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"vi\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.evb.com\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/evb-3.png\",\"contentUrl\":\"https:\\\/\\\/www.evb.com\\\/wp-content\\\/uploads\\\/2021\\\/03\\\/evb-3.png\",\"width\":605,\"height\":626,\"caption\":\"EVB\"},\"image\":{\"@id\":\"https:\\\/\\\/www.evb.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.evb.com\\\/#\\\/schema\\\/person\\\/fe8f0137976034abdfd2ae4f8c5682d0\",\"name\":\"evb\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"vi\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/6919cc4e91e3745783933e1263b15b0bed21b5e46f2b1e21643aa8b29240d0f7?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/6919cc4e91e3745783933e1263b15b0bed21b5e46f2b1e21643aa8b29240d0f7?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/6919cc4e91e3745783933e1263b15b0bed21b5e46f2b1e21643aa8b29240d0f7?s=96&d=mm&r=g\",\"caption\":\"evb\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"ISO 15118 Certificate Lifecycle Management in 2026 (TLS 199\/200-Day + CRA 24h\/72h)","description":"Manage ISO 15118 certificates in 2026: 199\/200-day TLS renewals, ACME automation, revocation failures (OCSP\/CRL), offline Plug & Charge, and CRA 24h\/72h reporting readiness.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.evb.com\/vi\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/","og_locale":"vi_VN","og_type":"article","og_title":"ISO 15118 Certificate Lifecycle Management in 2026 (TLS 199\/200-Day + CRA 24h\/72h)","og_description":"Manage ISO 15118 certificates in 2026: 199\/200-day TLS renewals, ACME automation, revocation failures (OCSP\/CRL), offline Plug & Charge, and CRA 24h\/72h reporting readiness.","og_url":"https:\/\/www.evb.com\/vi\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/","og_site_name":"EVB","article_published_time":"2026-01-12T07:13:14+00:00","article_modified_time":"2026-01-16T12:39:19+00:00","og_image":[{"width":1280,"height":721,"url":"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/12\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp","type":"image\/webp"}],"author":"evb","twitter_card":"summary_large_image","twitter_misc":{"\u0110\u01b0\u1ee3c vi\u1ebft b\u1edfi":"evb","\u01af\u1edbc t\u00ednh th\u1eddi gian \u0111\u1ecdc":"11 ph\u00fat"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":["Article","BlogPosting"],"@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#article","isPartOf":{"@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/"},"author":{"name":"evb","@id":"https:\/\/www.evb.com\/#\/schema\/person\/fe8f0137976034abdfd2ae4f8c5682d0"},"headline":"ISO 15118 Certificate Lifecycle Management in 2026: From TLS Urgency to CRA Compliance","datePublished":"2026-01-12T07:13:14+00:00","dateModified":"2026-01-16T12:39:19+00:00","mainEntityOfPage":{"@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/"},"wordCount":2523,"commentCount":0,"publisher":{"@id":"https:\/\/www.evb.com\/#organization"},"image":{"@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/12\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp","keywords":["ACME","Certificate Lifecycle","CRA Compliance","CRL","Cross-signing","Edge Proxy","EV Charging Infrastructure 2026","EVSE Security","ISO 15118","Local Controller","OCSP","OCSP Stapling","Offline Charging","Path Validation","PKI","Plug &amp; Charge","SBOM","TLS 1.3","Trust Anchors","VEX","Vulnerability Management"],"articleSection":["Blog"],"inLanguage":"vi","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/","url":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/","name":"ISO 15118 Certificate Lifecycle Management in 2026 (TLS 199\/200-Day + CRA 24h\/72h)","isPartOf":{"@id":"https:\/\/www.evb.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#primaryimage"},"image":{"@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#primaryimage"},"thumbnailUrl":"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/12\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp","datePublished":"2026-01-12T07:13:14+00:00","dateModified":"2026-01-16T12:39:19+00:00","description":"Manage ISO 15118 certificates in 2026: 199\/200-day TLS renewals, ACME automation, revocation failures (OCSP\/CRL), offline Plug & Charge, and CRA 24h\/72h reporting readiness.","breadcrumb":{"@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#breadcrumb"},"inLanguage":"vi","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/"]}]},{"@type":"ImageObject","inLanguage":"vi","@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#primaryimage","url":"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/12\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp","contentUrl":"https:\/\/www.evb.com\/wp-content\/uploads\/2025\/12\/EVB-4-Guns-480kw-dc-ev-charger-with-energy-storage-battery.webp","width":1280,"height":721,"caption":"EVB 4 Guns 480kw dc ev charger with energy storage battery"},{"@type":"BreadcrumbList","@id":"https:\/\/www.evb.com\/iso-15118-certificate-lifecycle-management-in-2026-from-tls-urgency-to-cra-compliance\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.evb.com\/"},{"@type":"ListItem","position":2,"name":"ISO 15118 Certificate Lifecycle Management in 2026: From TLS Urgency to CRA Compliance"}]},{"@type":"WebSite","@id":"https:\/\/www.evb.com\/#website","url":"https:\/\/www.evb.com\/","name":"EVB","description":"Smart EV Charging &amp; Energy Storage Solutions","publisher":{"@id":"https:\/\/www.evb.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.evb.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"vi"},{"@type":"Organization","@id":"https:\/\/www.evb.com\/#organization","name":"EVB","url":"https:\/\/www.evb.com\/","logo":{"@type":"ImageObject","inLanguage":"vi","@id":"https:\/\/www.evb.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.evb.com\/wp-content\/uploads\/2021\/03\/evb-3.png","contentUrl":"https:\/\/www.evb.com\/wp-content\/uploads\/2021\/03\/evb-3.png","width":605,"height":626,"caption":"EVB"},"image":{"@id":"https:\/\/www.evb.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.evb.com\/#\/schema\/person\/fe8f0137976034abdfd2ae4f8c5682d0","name":"evb","image":{"@type":"ImageObject","inLanguage":"vi","@id":"https:\/\/secure.gravatar.com\/avatar\/6919cc4e91e3745783933e1263b15b0bed21b5e46f2b1e21643aa8b29240d0f7?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/6919cc4e91e3745783933e1263b15b0bed21b5e46f2b1e21643aa8b29240d0f7?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/6919cc4e91e3745783933e1263b15b0bed21b5e46f2b1e21643aa8b29240d0f7?s=96&d=mm&r=g","caption":"evb"}}]}},"_links":{"self":[{"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/posts\/38532","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/comments?post=38532"}],"version-history":[{"count":5,"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/posts\/38532\/revisions"}],"predecessor-version":[{"id":38581,"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/posts\/38532\/revisions\/38581"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/media\/37917"}],"wp:attachment":[{"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/media?parent=38532"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/categories?post=38532"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.evb.com\/vi\/wp-json\/wp\/v2\/tags?post=38532"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}