[Go to /]
Structures
Membership
Contact us

IGTF
APGridPMA
TAGPMA
REFEDS
SCI
WISE

Documents
Charter
Guidelines
One Statement Policies

CAOPS-WG
Wiki

Technical Info
CA Distribution download
Subject Locator
Find your local CA
About your certificate

Newsletter issues
Subscribe
Service notices

Tools download and fetch-crl
Technical documentation
IGTF OID Registry
SHA-2 timeline

Meetings
CERN, Geneva, CH, Feb 5-7, 2025
Amsterdam, NL, Sept 23-24, 2024

Overview
Agendas
Intranet and Reviews (closed)

Short-Lived Credential Services profile

Note that all technology-specific authentication profiles have been amalgamated into a common Authentication Assurance guidelines, augmented with PKIX technology-specific guidelines. The IGTF Authentication Assurance profile corresponding to SLCS is https://igtf.net/ap/authn-assurance/aspen. Assurance Profiles are registered with IANA under RFC6711.

  • Short-lived Certificate Services Profile
    Formats available: MS Word
    Managed by: TAGPMA
    Original source: all versions.
    Status: approved by all PMAs

    This is an Authentication Profile of the International Grid Trust Federation describing the minimum requirements on a Short Lived Credential Service (SLCS) X.509 PKI CAs. SLCS X.509 Public Key Certification Authorities (SLCS PKI CAs) issue short-term credentials to end-entities, who will themselves posses and control their key pair and their activation data. These CAs act as an independent trusted third party for both subscribers and relying parties within the infrastructure. These authorities will use a long-term signing key, which is stored in a secure manner as defined in the Profile.


Comments to David Groep. This site is hosted at Nikhef, subject to the privacy policy.