Views
3 years ago

X.509 Certification Path Validation - Entrust

X.509 Certification Path Validation - Entrust

X.509

X.509 certification path validation Entrust is a registered trademark of Entrust, Inc. in the United States and certain other countries. In Canada, Entrust is a registered trademark of Entrust Limited. All Entrust product names are trademarks of Entrust, Inc. or Entrust Limited. All other company and product names are trademarks or registered trademarks of their respective owners. The material provided in this document is for information purposes only. It is not intended to be advice. ENTRUST DOES NOT WARRANT THE QUALITY, ACCURACY OR COMPLETENESS OF THE INFORMATION CONTAINED IN THIS ARTICLE. SUCH INFORMATION IS PROVIDED "AS IS" WITHOUT ANY REPRESENTATIONS, WARRANTIES AND/OR CONDITIONS OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, BY USAGE OF TRADE, OR OTHERWISE, AND ENTRUST SPECIFICALLY DISCLAIMS ANY AND ALL REPRESENTATIONS, WARRANTIES AND/OR CONDITIONS OF MERCHANTABILITY, SATISFACTORY QUALITY, TITLE, NON-INFRINGEMENT, OR FITNESS FOR A SPECIFIC PURPOSE. © Copyright 2004 Entrust. www.entrust.com All rights reserved. Page i

X.509 certification path validation TABLE OF CONTENTS 1. ABSTRACT.......................................................................................................................... 1 2. INTRODUCTION.................................................................................................................. 2 2.1 PKI ENTITIES................................................................................................................. 2 2.2 RELYING PARTY TRUST .............................................................................................. 3 2.3 BUSINESS CONTROLS................................................................................................. 4 2.4 CERTIFICATE EXTENSIONS ........................................................................................ 4 3. PATH VALIDATION............................................................................................................. 6 3.1 PATH VALIDATION INPUTS.......................................................................................... 6 3.1.1 Trust Anchor ....................................................................................................... 6 3.1.2 Certification Path................................................................................................. 7 3.1.3 Revocation Status Information ............................................................................ 7 3.1.4 Process Constraints ............................................................................................ 7 3.2 THE PATH VALIDATION PROCESS.............................................................................. 8 3.2.1 Path Structure Processes.................................................................................... 8 3.2.2 Certificate Validity Processes .............................................................................. 8 3.2.3 Business Controls Processes.............................................................................. 9 3.3 PROCESS OUTPUTS .................................................................................................. 11 4. CONFORMANCE............................................................................................................... 12 5. CURRENT STATUS........................................................................................................... 13 6. SUMMARY/CONCLUSIONS.............................................................................................. 14 7. REFERENCES................................................................................................................... 16 8. ABOUT ENTRUST............................................................................................................. 17 © Copyright 2004 Entrust. www.entrust.com All rights reserved. Page ii

The Federal Bridge: A Foundation of Trust - Entrust
A General, Flexible Approach to Certificate Revocation - Entrust
X.509 Certificates
Using Entrust certificates with VPN
Certificate Policies and Certification Practice Statements v.1.0 - Entrust
A Model of Trust Evaluation for X.509 Certificate
Entrust Certificate Management Service (CMS)
Using Entrust certificates with Adobe CDS
Personal Secure Email Certificate - Entrust
Entrust Certificate Services Certificate Management Service 9.7 ...
Getting an end-user Entrust certificate using Entrust Entelligence ...
X.509 Certificate and CRL Extensions Profile for PIV-I Cards
Trust Management in the Public-Key Infrastructure - Entrust
Entrust Certificate Services Authenticode Signing User Guide
freeicp.org: free trusted certificates by combining the x.509
Certification Path Processing in the Tumbleweed Validation ...
Request for comments - Authority Public-key Distribution ... - Entrust
How Trust Had a Hole Blown In It The Case of X.509 Name ...
The Road to Compliance: Signing Your SOX Certification ... - Entrust
Internet X.509 Public Key Infrastructure: Qualified Certificates Profile
Internet X.509 Public Key Infrastructure (PKI) Proxy ... - Clizio.com
Functional Requirements for Path Validation Systems
Entrust Adobe CDS Individual Certificate Enrollment ... - Entrust, Inc.
Compliance of X.509 Certification Standard in the ... - IBIMA Publishing
X.509 Proxy Certificates for Dynamic Delegation - tp.mcs.anl.gov ...
TrustGate5 (PSK and X.509 Certificates) - Innominate Security ...
The Initium X.509 Certificate Wizard - The Journal of Object ...
Understanding X.509 Attribute Certificates - Pascal Jakobi
EV Multi-domain Certificate Enrollment Guide - Entrust