![[Go to /]](/ic-100x43.png){kind=small}
Structures
Membership
Contact us
IGTFAPGridPMA
TAGPMA
REFEDS
SCI
WISE
Documents
Charter
Guidelines
One Statement Policies
CAOPS-WG
Wiki
Technical Info
CA Distribution download
Subject Locator
Find your local CA
About your certificate
Newsletter issues
Subscribe
Service notices
Tools download and fetch-crl
Technical documentation
IGTF OID Registry
SHA-2 timeline
Meetings
Abingdon, UK, May 29-30, 2024
Overview
Agendas
Intranet and Reviews
Short-Lived Credential Services profile
Note that all technology-specific authentication profiles have been amalgamated into a common Authentication Assurance guidelines, augmented with PKIX technology-specific guidelines. The IGTF Authentication Assurance profile corresponding to SLCS is https://igtf.net/ap/authn-assurance/aspen. Assurance Profiles are registered with IANA under RFC6711.
- Short-lived Certificate Services Profile
Formats available: MS Word
Managed by: TAGPMA
Original source: all versions.
Status: approved by all PMAsThis is an Authentication Profile of the International Grid Trust Federation describing the minimum requirements on a Short Lived Credential Service (SLCS) X.509 PKI CAs. SLCS X.509 Public Key Certification Authorities (SLCS PKI CAs) issue short-term credentials to end-entities, who will themselves posses and control their key pair and their activation data. These CAs act as an independent trusted third party for both subscribers and relying parties within the infrastructure. These authorities will use a long-term signing key, which is stored in a secure manner as defined in the Profile.
Comments to David Groep. This site is hosted at Nikhef, subject to the privacy policy.