IDRBT-CPS-v3
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
2.7.4. IDRBT CA Repository
The IDRBT CA repository is a collection of databases for storing and retrieving
certificates and other information related to certificates. The IDRBT CA
repository’s content includes: certificates, CRL, current and prior versions of the
IDRBT CA CPS, and other information as prescribed by IDRBT CA from time to
time. Any confidential information would not be available in the repository.
2.8. Compliance audit
2.8.1. Frequency of Audit
Every year IDRBT CA conducts a comprehensive compliance audit of the
practices mentioned in this CPS as mentioned in the IT Act, Rules,
Regulations and Guidelines.
All parties should comply with operating agreements if exists, and this CPS
under which certificates are issued. If, there is any non-compliance and it is
found to be serious, certificate of the respective party may not be renewed.
2.8.2. Qualifications of auditor
A certified Information Security Auditor empanelled by the CCA will be
contracted to audit on IDRBT CA operations.
2.8.3. Auditors relationship to audited party
The auditing firm that is performing the audit shall be independent of the party
being audited such as the IDRBT CA and the RAs.
2.8.4. Topics covered by audit
The topics to be covered are as per the IT Act, Rules, Regulations and Guidelines
to Certifying Authorities by CCA.
The topics include:
Physical security
IDRBT CA CPS Version 3.2, Copyright © IDRBT, 2002-12
IDRBTCA/DOC/CPS/3.2
27