The EUGridPMA - coordinating grid authentication in e-Science

The EUGridPMA is the international organisation to coordinate the trust fabric for e-Science grid authentication in Europe. It collaborates with the regional peers APGridPMA for the Asia-Pacific and The Americas Grid PMA in the International Grid Trust Federation. The charter document defines the group's objective, scope and operation. It is the basis for the guidelines documents on the accreditation procedure, the Authentication profile for X.509 secured "classic" certification authorities and other IGTF recognised Profiles. News and Quick Links Important messages and announcements (such as new distributions of the list of accredited authorities) are carried over the EUGridPMA Announce news service. Every relying party (that means: you) is strongly encouraged to subscribe. Subscription can be via e-mail or the Mailman web interface. You may also be interested in the following direct links: Current distribution of IGTF accredited authorites Getting your own certificate: find your national or regional authority Locate issuing authorities by certificate subject name Authentication Profiles managed by this PMA Getting the Roots of Trust An easy-installable form of the CA root certificates is provided by means of an RPM and a gzipped-tar-file repository on this web site. The latest version is currently 1.34. When using them as part of your infrastructure or project, please validate the integrity of these important roots of trust with the TERENA TACAR repository for those CAs registered there.

PMA Spotlight Update to 1.34 available An update to the trust anchor repository is now available as the 1.34 release with new and updated CA information from the distribution web site. The February 18th newsletter contains the full announcement of the 1.34 distribution. Version 1.34 corrects a malformed 'signing_policy' file for the CESNET-CA-Root that was distributed in error in the 1.33 release. Authentication and the IGTF explained We all know that authentication is a must when using grid resources but how much do we really know about it? Jens Jensen, from STFC and the UK eScience CA manager, explains. ... read more in iSGTW (external link) Enhanced distribution format for all CAs It has come to the attention of the IGTF that the developers of the OpenSSL software are about to release a new version of their software which is fundamentally incompatible with both any pre-existing versions of their own software, as well as bring incompatibility with many other software products that use a directory-based trust anchor store, such as Apache's mod_ssl, the gLite Trust Manager, VOMS, etc. Since the IGTF distributes the trust anchors of accredited authorities also in a way that used to work with OpenSSL, we feel that it is in the community's interest to keep supporting OpenSSL also for version 1, whilst ensuring that other softwares continue to work as before. Read more in the February 15th newsletter ... Find your CA Find your national or regional issuing authority with the new clickable membership map. Read more...