IDRBT-CPS-v3
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Revoke certificates if requested by the end entity or when deemed
necessary because of compromise or suspected compromise.
Inform subscribers if IDRBT CA initiates a certificate revocation
process.
Communicate to subscriber when the certificate is revoked or
suspended.
Update revoked certificates and publishes CRL in directory server.
Periodically post the CRL and in emergency publishing it
immediately.
Maintain a list of compromised/revoked certificates and
compromised users with all the details.
Keep the entire information of Subscriber and other information that
should be kept confidential as mentioned in section 2.8.1, secured
and confidential.
Collect and keep relevant documents for the corresponding
certificates from applicant/subscriber as mentioned in section 4.1.2 as
may be required.
Conduct internal security audits.
Conduct compliance audit as required by CCA.
Submission of Digital Certificates/CRL to the CCA for publication in
National Repository.
Assist in all respects, pertaining to IT Act 2000 for the audits
conducted by CCA to validate the renewal of licence.
2.1.2. RA obligations
The Registration Authorities operating under the IDRBT CA hierarchy discharge
their obligations under this CPS by:
Enforcing practices described in this CPS.
IDRBT CA CPS Version 3.2, Copyright © IDRBT, 2002-12
IDRBTCA/DOC/CPS/3.2
13