Documents
of certification authorities,
policies, practice statements, agreements in the public key infrastructure
András
Gerencsér h6389ger@helka.iif.hu
The security stipulations and the pledge of trust of
the participating parties are defined basically by the certification policies
and by the certification policy statements in the public key infrastructures
(PKI). The technological facilities are of secondary importance. Further
documents are providing the organisational and judicial completeness at the
well functioning certificate service providers.
The documentation framework presented in RFC 2527 and
in its new draft version takes the performances of PKI with a proper
thoroughness into consideration. The providers and their customers have to be
aware these topics. There are samples of certification policies in several countries,
which forms the base from which other policies can be written. The sample
documents help to protect the rights of subscribers and of relying parties, and
they disseminate the common culture of digital certification. The paper
analyses the documents issued in the public administrations or by private
service providers of various countries. It is crucial in the adaptation of new
technologies to find the proper technical terms and expressions in the
Hungarian language...