Views
3 years ago

X.509 Certification Path Validation - Entrust

X.509 Certification Path Validation - Entrust

X.509

X.509 certification path validation Entrust is a registered trademark of Entrust, Inc. in the United States and certain other countries. In Canada, Entrust is a registered trademark of Entrust Limited. All Entrust product names are trademarks of Entrust, Inc. or Entrust Limited. All other company and product names are trademarks or registered trademarks of their respective owners. The material provided in this document is for information purposes only. It is not intended to be advice. ENTRUST DOES NOT WARRANT THE QUALITY, ACCURACY OR COMPLETENESS OF THE INFORMATION CONTAINED IN THIS ARTICLE. SUCH INFORMATION IS PROVIDED "AS IS" WITHOUT ANY REPRESENTATIONS, WARRANTIES AND/OR CONDITIONS OF ANY KIND, WHETHER EXPRESS, IMPLIED, STATUTORY, BY USAGE OF TRADE, OR OTHERWISE, AND ENTRUST SPECIFICALLY DISCLAIMS ANY AND ALL REPRESENTATIONS, WARRANTIES AND/OR CONDITIONS OF MERCHANTABILITY, SATISFACTORY QUALITY, TITLE, NON-INFRINGEMENT, OR FITNESS FOR A SPECIFIC PURPOSE. © Copyright 2004 Entrust. www.entrust.com All rights reserved. Page i

X.509 certification path validation TABLE OF CONTENTS 1. ABSTRACT.......................................................................................................................... 1 2. INTRODUCTION.................................................................................................................. 2 2.1 PKI ENTITIES................................................................................................................. 2 2.2 RELYING PARTY TRUST .............................................................................................. 3 2.3 BUSINESS CONTROLS................................................................................................. 4 2.4 CERTIFICATE EXTENSIONS ........................................................................................ 4 3. PATH VALIDATION............................................................................................................. 6 3.1 PATH VALIDATION INPUTS.......................................................................................... 6 3.1.1 Trust Anchor ....................................................................................................... 6 3.1.2 Certification Path................................................................................................. 7 3.1.3 Revocation Status Information ............................................................................ 7 3.1.4 Process Constraints ............................................................................................ 7 3.2 THE PATH VALIDATION PROCESS.............................................................................. 8 3.2.1 Path Structure Processes.................................................................................... 8 3.2.2 Certificate Validity Processes .............................................................................. 8 3.2.3 Business Controls Processes.............................................................................. 9 3.3 PROCESS OUTPUTS .................................................................................................. 11 4. CONFORMANCE............................................................................................................... 12 5. CURRENT STATUS........................................................................................................... 13 6. SUMMARY/CONCLUSIONS.............................................................................................. 14 7. REFERENCES................................................................................................................... 16 8. ABOUT ENTRUST............................................................................................................. 17 © Copyright 2004 Entrust. www.entrust.com All rights reserved. Page ii

The Federal Bridge: A Foundation of Trust - Entrust
A General, Flexible Approach to Certificate Revocation - Entrust
Using Entrust certificates with VPN
X.509 Certificates
A Model of Trust Evaluation for X.509 Certificate
Entrust Certificate Management Service (CMS)
Certificate Policies and Certification Practice Statements v.1.0 - Entrust
Using Entrust certificates with Adobe CDS
Entrust Certificate Services Certificate Management Service 9.7 ...
Personal Secure Email Certificate - Entrust
Getting an end-user Entrust certificate using Entrust Entelligence ...
Entrust Certificate Services Authenticode Signing User Guide
Trust Management in the Public-Key Infrastructure - Entrust
X.509 Certificate and CRL Extensions Profile for PIV-I Cards
freeicp.org: free trusted certificates by combining the x.509
Certification Path Processing in the Tumbleweed Validation ...
How Trust Had a Hole Blown In It The Case of X.509 Name ...
Request for comments - Authority Public-key Distribution ... - Entrust
Internet X.509 Public Key Infrastructure: Qualified Certificates Profile
The Road to Compliance: Signing Your SOX Certification ... - Entrust
Functional Requirements for Path Validation Systems
Internet X.509 Public Key Infrastructure (PKI) Proxy ... - Clizio.com
Compliance of X.509 Certification Standard in the ... - IBIMA Publishing
Entrust Adobe CDS Individual Certificate Enrollment ... - Entrust, Inc.
The Initium X.509 Certificate Wizard - The Journal of Object ...
TrustGate5 (PSK and X.509 Certificates) - Innominate Security ...
X.509 Proxy Certificates for Dynamic Delegation - tp.mcs.anl.gov ...
Understanding X.509 Attribute Certificates - Pascal Jakobi
EV Multi-domain Certificate Enrollment Guide - Entrust