Raytheon Company Public Key Infrastructure (PKI) Certificate Policy

More documents

Recommendations

Info

9.4 Privacy of Personal Information Raytheon collects, stores, processes and discloses personally identifiable information in accordance with the Raytheon Privacy Policy, located at http://www.raytheon.com/legal/. 9.5 Intellectual Property Rights Raytheon shall retain ownership and all intellectual property rights for any public key certificates and private keys that it issues. 9.5.1 Property Rights in Certificates and Revocation Information Raytheon CAs retain all Intellectual Property Rights in and to the Certificates and revocation information that they issue. Raytheon grants permission to reproduce and distribute Certificates on a nonexclusive royalty-free basis, provided that they are reproduced in full and that use of Certificates is subject to a Relying Party Agreement with relevant CA where applicable. Raytheon shall grant permission to use revocation information to perform Relying Party functions, subject to applicable contractual agreements. 9.5.2 Property Rights in the CPS All Intellectual Property Rights in this CP are owned by Raytheon and/or its licensors. All Intellectual Property Rights in any CP or CPS of a Raytheon CA or subordinate CA are owned by the Raytheon CA and/or its licensors. 9.5.3 Property Rights in Names As between Raytheon and a Certificate Applicant, the Certificate Applicant retains all rights, if any, in any trademark, service mark, or trade name of the Certificate Applicant contained in any Customer Application. 9.5.4 Property Rights in Keys Key pairs corresponding to Certificates issued by Raytheon CAs are the property of Raytheon Company. 9.6 Representations and Warranties Representations and warranties contained in commercial agreements between Raytheon and other parties are contained in the following documents: � Policy Mapping Services Agreement between Raytheon and CertiPath � Master Services Agreement between Raytheon and CertiPath � Applicable Memorandums of Agreement The above listed documents may contain additional and/or supplemental representations and warranties between the parties. 9.6.1 CA Representations and Warranties Raytheon certificates are issued at the sole discretion of the Raytheon PKI PMA. In the event a Raytheon CA issues a cross certificate to a non-Raytheon CA, it does so for the convenience of Raytheon. 9.6.1.1 Raytheon Root CA Raytheon represents and warrants that, to its knowledge: 76 7/25/2011
� There are no material misrepresentations of fact in the Cross Certificates known to or originating from the entity approving the Cross Certification Applications or issuing the Cross Certificates. � There are no errors in the information in the Cross Certificate that were introduced by the entity approving the Cross Certification Application or issuing the Cross Certificate as a result of a failure to exercise reasonable care in managing the Certificate Application or creating the Certificate. � Its Certificates meet all material requirements of this CP. � Revocation services and use of a repository conform to the applicable CPS in all material respects. � The CA signing private key is protected and that no unauthorized person has ever had access to the private key; � All representations made by the Raytheon CA in any applicable agreements are true and accurate in all material respects; � All information supplied by the Subscribers and CA subjects in connection with, and/or contained in the Certificate is true and accurate in all material respects. � The Certificates are being used by the CA exclusively for authorized and legal purposes, consistent with this CP and applicable CPS. The applicable contractual agreements may include additional representations and warranties. 9.6.1.2 Raytheon Subordinate or Cross-Certified CA Raytheon represents and warrants that, to its knowledge: � The CA signing key is protected and that no unauthorized person has ever had access to that private key. � All representations made with respect to a Raytheon CA in the applicable agreements are true and accurate, in all material respects. � All information supplied by the Subscribers and Subject CAs in connection with, and/or contained in the Certificate is true and accurate in all material respects; � The Certificates are being used by the CA exclusively for authorized and legal purposes, consistent with this CP or applicable CPS. 9.6.2 Subscriber A Subscriber shall be required to sign a document (e.g., a subscriber agreement) requiring that the Subscriber satisfy certain obligations including, but not limited to: � Subscriber shall accurately represent itself in all communications with the PKI authorities. � Subscriber shall promptly notify the appropriate CA upon suspicion of loss or compromise of their private keys. Such notification shall be made directly or indirectly through mechanisms consistent with the CA’s CPS In signing the document described above, each Subscriber shall represent and warrant that: � The data contained in any certificates issued to Subscriber is accurate; � The Subscriber lawfully holds the private key corresponding to public key identified in the Subscriber’s certificate; 77 7/25/2011
Page 1 and 2:
Raytheon Company Public Key Infrast
Page 3 and 4:
Table of Contents 1 INTRODUCTION ..
Page 5 and 6:
4.6.7 Notification of Certificate I
Page 7 and 8:
5.4.8 Vulnerability Assessments ...
Page 9 and 10:
9 OTHER BUSINESS AND LEGAL MATTERS
Page 11 and 12:
1 INTRODUCTION This Certificate Pol
Page 13 and 14:
1.1.3 Scope The following diagram r
Page 15 and 16:
1. The CAs asserting id-raytheon-SH
Page 17 and 18:
approval of the PMA. The ROA activi
Page 19 and 20:
� Raytheon employees and eligible
Page 21 and 22:
1.5 Policy Administration 1.5.1 Org
Page 23 and 24:
3.1 Naming 3 IDENTIFICATION & AUTHE
Page 25 and 26: establishing how the applicant is k
Page 27 and 28: 4. The Identity Verifier shall reco
Page 29 and 30: 3.3.1 Identification and Authentica
Page 31 and 32: For subscriber certificates, the pr
Page 33 and 34: 4.3.1 CA Actions during Certificate
Page 35 and 36: 4.7.4 Notification of New Certifica
Page 37 and 38: Any CA may unilaterally revoke anot
Page 39 and 40: 4.9.8 Maximum Latency for CRLs The
Page 41 and 42: 4.12.2 Session Key Encapsulation an
Page 43 and 44: depart shall initial a sign-out she
Page 45 and 46: � Performing or overseeing intern
Page 47 and 48: � Be trustworthy; � Have no oth
Page 49 and 50: administrative documents (e.g., Adm
Page 51 and 52: REVOCATION PROFILE MANAGEMENT Audit
Page 53 and 54: It is acceptable for the system to
Page 55 and 56: 5.6 Key Changeover A CA uses a sign
Page 57 and 58: If a RA signature keys are compromi
Page 59 and 60: show that appropriate role separati
Page 61 and 62: Hashing: Cryptographic Function Has
Page 63 and 64: 6.2 Private Key Protection and Cryp
Page 65 and 66: 6.3 Other Aspects of Key Management
Page 67 and 68: � All hardware must be shipped or
Page 69 and 70: 7 CERTIFICATE, CRL AND OCSP PROFILE
Page 71 and 72: When multiple values exist for an a
Page 73 and 74: 8 COMPLIANCE AUDIT AND OTHER ASSESS
Page 75: 9.1 Fees 9 OTHER BUSINESS AND LEGAL
Page 79 and 80: � Ensure that certificate and rev
Page 81 and 82: as a termination of this CP unless
Page 83 and 84: enforce the agreement to arbitrate,
Page 85 and 86: 10 CERTIFICATE, CRL, AND OCSP FORMA
Page 87 and 88: Field Value Policy Mapping For SHA-
Page 89 and 90: 10.3 Raytheon Root CA Certificate (
Page 91 and 92: 91 7/25/2011
Page 93 and 94: 10.6 Medium Assurance Signing CA Ce
Page 95 and 96: Field Value Entrust Version Info c=
Page 97 and 98: 10.9 Medium Assurance Code Signing
Page 99 and 100: Field Value Entrust Version Info En
Page 101 and 102: 10.12 Medium Assurance Domain Contr
Page 103 and 104: 10.13 Medium Assurance Role Signatu
Page 105 and 106: 10.15 OCSP Responder Certificate Th
Page 107 and 108: 10.17 Medium Assurance CA CRL Forma
Page 109 and 110: 11 PKI REPOSITORY INTEROPERABILITY
Page 111 and 112: BIBLIOGRAPHY The following document
Page 113 and 114: HTTP Hypertext Transfer Protocol IA
Page 115 and 116: 13 GLOSSARY Access Ability to make
Page 117 and 118: Client (application) A system entit
Page 119 and 120: Non-Repudiation Assurance that the
Page 121 and 122: other CA. (See superior CA). Subscr
show all

Raytheon Company Public Key Infrastructure (PKI) Certificate Policy

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?