Guidelines and Authentication Profiles: Classic X.509 CAs with secured infrastructure

• Classic X.509 CAs with secured infrastructure
  Formats available: Adobe PDF; Microsoft Word; HTML;
  Managed by: EUGridPMA
  Status: version 4.3, approved by EUGridPMA, APGridPMA, pending endorsement TAG

  This is an Authentication Profile of the International Grid Trust Federation describing the minimum requirements on traditional X.509 PKI CAs. Traditional X.509 Public Key Certification Authorities (traditional PKI CAs) issue long-term credentials to end-entities, who will themselves posses and control their key pair and their activation data. These CAs act as an independent trusted third party for both subscribers and relying parties within the infrastructure. These authorities will use a long-term signing key, which is stored in a secure manner as defined in the Profile.

  Version history:

  • Guidelines version 4.2: Adobe PDF; Microsoft Word (latest IGTF version).
  • Guidelines version 4.1: Adobe PDF; Microsoft Word; HTML.
  • Guidelines version 4.0: Acrobat PDF; Microsoft Word; HTML.
  • Guidelines version 3.2: Acrobat PDF; Microsoft Word; HTML.
  • Guidelines version 3.1: Acrobat PDF; Microsoft Word.
  • Guidelines version 3.0: Acrobat PDF; Microsoft Word; HTML.
  • Guidelines version 2+: Acrobat PDF; Microsoft Word.
  • Guidelines version 2: Text.
  • Guidelines version 1: Text.

  Associated documents

  • Auditing Template version 4.2: in ODF; in MS Excel; in PDF.