![[Go to /]](/ic-100x43.png){kind=small}
Structures
Membership
IGTFAPGridPMA
TAGPMA
TERENA TACAR
Documents
Charter
Guidelines
One Statement Policies
CAOPS-WG
Wiki (closed)
Technical Info
CA Distribution download
Subject Locator
Find your local CA
Newsletter issues
Subscribe
Service notices
Nagios monitoring
Tools download and fetch-crl
Technical documentation
IGTF OID Registry
Meetings
Copenhagen, May 26-28, 2008
Overview
Agendas
Intranet and Reviews
Joining?
Authorisation Operations WG
switch to print layout
Guidelines and Authentication Profiles: Classic X.509 CAs with secured infrastructure
- Classic X.509 CAs with secured infrastructure
Formats available: Adobe PDF; Microsoft Word; HTML.
Managed by: EUGridPMA
Status: version 4.1, approved by all PMAsThis is an Authentication Profile of the International Grid Trust Federation describing the minimum requirements on traditional X.509 PKI CAs. Traditional X.509 Public Key Certification Authorities (traditional PKI CAs) issue long-term credentials to end-entities, who will themselves posses and control their key pair and their activation data. These CAs act as an independent trusted third party for both subscribers and relying parties within the infrastructure. These authorities will use a long-term signing key, which is stored in a secure manner as defined in the Profile.
Version history:
- Guidelines version 4.0: Acrobat PDF; Microsoft Word; HTML.
- Guidelines version 3.2: Acrobat PDF; Microsoft Word; HTML.
- Guidelines version 3.1: Acrobat PDF; Microsoft Word.
- Guidelines version 3.0: Acrobat PDF; Microsoft Word; HTML.
- Guidelines version 2+: Acrobat PDF; Microsoft Word.
- Guidelines version 2: Text.
- Guidelines version 1: Text.