ACP 185

More documents

Recommendations

Info

UNCLASSIFIED ACP 185 607. Generation and transport of the certificate signing request • The NDPKI operating the CA to be cross-certified will arrange for the generation of the principal cross-certificate request at a mutually agreed date and time. At least two persons will act as witnesses of the generation of the certificate request. The Nation that will sign the cross-certificate request may have a representative at the generation • The principal cross-certificate request will be generated in an agreed file format • Authorised witnesses will record the requesting CA’s thumbprint, e.g. a hash of its public key • The request is saved to a media or application suitable for transportation (e.g. on a CD) • The request is safe handed 4 to authorised national representatives of the other CCEB Member Nation • The request is delivered to the cross-certifying NDPKI environment 608. Signing and publishing the principal cross-certificate • Prior to signing the request, the cross-certifying NDPKI CA checks that the request has not been tampered with, by verifying the CAs thumbprint on the request file • After checking that the request has not been tampered with, the principal cross-certificate is signed by the applicable cross-certifying CCEB Member Nation CA • The principal cross-certificate is returned to the originating CCEB Member Nation by a mutually agreed secure mechanism (e.g. safe hand) • The principal cross-certificate will be published to a location where it is accessible by Relying Parties (i.e. Subscribers) of the cross-certified NDPKI Note: The indicative process described above is a one way process, i.e. the trust is one way. The process will need to be repeated with roles reversed for mutual trust. Uncontrolled copy when printed 4 Alternatively by any mutually agreed secure method. 6-2 UNCLASSIFIED
UNCLASSIFIED ACP 185 CHAPTER 7 GOVERNANCE and CHANGE CONTROL DOCUMENT MAINTENANCE 701. This document shall be subject to the normal CCEB staffing process for ACPs, but as a minimum the ACP is to be reviewed every two years or when required to ensure that it remains consistent with CCEB national policies and evolving technologies. Suggestions for amendments should be forwarded through normal channels to the CCEB Washington Staff (WS). 702. This document will be subject to the ACP amendment process which provides for major and minor amendments. The major amendment process will be used to change the content or intent of this document and may result in the incorporation of a number of minor amendments resulting in the creation of a new edition to this ACP. Any nation or group can request a major amendment. The minor amendment process will be used to make smaller editorial wording changes, which are not meant to significantly change the intent of this ACP. Uncontrolled copy when printed 7-1 UNCLASSIFIED
Page 1 and 2: UNCLASSIFIED ACP 185 Public Key Inf
Page 3 and 4: UNCLASSIFIED ACP 185 THE COMBINED C
Page 5 and 6: UNCLASSIFIED ACP 185 TABLE OF CONTE
Page 7 and 8: UNCLASSIFIED ACP 185 ANNEX C ......
Page 9 and 10: UNCLASSIFIED ACP 185 existing polic
Page 11 and 12: UNCLASSIFIED ACP 185 arisen as a re
Page 13 and 14: UNCLASSIFIED ACP 185 • Subject al
Page 15 and 16: UNCLASSIFIED ACP 185 CHAPTER 4 CROS
Page 17 and 18: UNCLASSIFIED ACP 185 INTRODUCTION C
Page 19: UNCLASSIFIED ACP 185 INTRODUCTION C
Page 23 and 24: UNCLASSIFIED ANNEX A TO ACP 185 •
Page 25 and 26: UNCLASSIFIED ANNEX A TO ACP 185 use
Page 27 and 28: UNCLASSIFIED ANNEX A TO ACP 185 IDE
Page 29 and 30: UNCLASSIFIED ANNEX A TO ACP 185 1.1
Page 31 and 32: UNCLASSIFIED ANNEX A TO ACP 185 •
Page 33 and 34: UNCLASSIFIED ANNEX A TO ACP 185 An
Page 37 and 38: UNCLASSIFIED ANNEX A TO ACP 185 CAs
Page 39 and 40: UNCLASSIFIED ANNEX A TO ACP 185 The
Page 43 and 44: UNCLASSIFIED ANNEX A TO ACP 185 pro
Page 45 and 46: UNCLASSIFIED ANNEX A TO ACP 185 CA,
Page 47 and 48: UNCLASSIFIED ANNEX A TO ACP 185 Sho
Page 49 and 50: UNCLASSIFIED ANNEX A TO ACP 185 Sof
Page 51 and 52: UNCLASSIFIED ANNEX A TO ACP 185 Cer
Page 53 and 54: UNCLASSIFIED ANNEX A TO ACP 185 Cro
Page 57 and 58: UNCLASSIFIED ANNEX A TO ACP 185 Fie
Page 67 and 68: UNCLASSIFIED ANNEX A TO ACP 185 id-
Page 71 and 72:
UNCLASSIFIED ANNEX A TO ACP 185 1.4
Page 73 and 74:
UNCLASSIFIED ANNEX A TO ACP 185 1.6
Page 75 and 76:
UNCLASSIFIED ANNEX B TO ACP 185 In
Page 77 and 78:
UNCLASSIFIED ANNEX B TO ACP 185 Mil
Page 79 and 80:
UNCLASSIFIED ANNEX B TO ACP 185 the
Page 81 and 82:
UNCLASSIFIED ANNEX B TO ACP 185 4.4
Page 83 and 84:
UNCLASSIFIED ANNEX B TO ACP 185 Any
Page 85 and 86:
UNCLASSIFIED ANNEX B TO ACP 185 Sig
Page 87 and 88:
UNCLASSIFIED ANNEX B TO ACP 185 SCH
Page 89 and 90:
UNCLASSIFIED ANNEX C TO ACP 185 CRO
Page 91 and 92:
UNCLASSIFIED ANNEX C TO ACP 185 WIT
Page 93 and 94:
UNCLASSIFIED ANNEX C TO ACP 185 g)
Page 95 and 96:
UNCLASSIFIED ANNEX C TO ACP 185 •
Page 97 and 98:
CA Certificate UNCLASSIFIED Certifi
Page 99 and 100:
NDPKI UNCLASSIFIED National Defence
Page 101 and 102:
System equipment configuration Syst
Page 103:
KES Key Escrow Server UNCLASSIFIED
show all

ACP 185

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?