pki

SWITCH - Security - PKI Security AAI CERT Grid SWITCHconnect PKI Documents Participants Meetings Manage Certificates SWITCHpki SCS SWITCHpki SwissSign Contact AAA/SWITCH SWITCHpki SWITCHpki, an X.509 public key infrastructure for the Swiss higher education system (universities at the tertiary level), consists of the following services: provides certificates for use in client and server applications operates the SWITCH RA (Registration Authority) for issuing certificates offers interfaces to manage SWITCHpki certificates maintains the SWITCHpki documentation (in cooperation with its customers' technical specialists) Types of SWITCHpki certificates Currently, the SWITCHpki offering comprises two types of certificates: SWITCHpki SwissSign certificates: available since March 2004 and issued by SwissSign, one of the outsourcing partners for SWITCHpki. SWITCHpki SCS certificates: available since May 2006 and issued by GlobalSign, a CA located in Belgium. SWITCHpki SwissSign CA hierarchy The SWITCHpki SwissSign architecture is based on a hierarchical model, which allows fine control over its Certificate Authorities (CAs) and Registration Authorities (RAs). Currently three SWITCH CAs exist under this hierarchy: the SWITCH CA is an offline CA stored in a Swiss bank safe and is used to sign the subordinate SWITCH Server CA and the SWITCH Personal CA, which in turn are used for issuing server and personal (user) certificates, respectively. The SWITCH CA is part of the SwissSign CA hierarchy, as depicted below: SWITCHpki SCS CA hierarchy SCS, which stands for "Server Certificate Service", is a project of TERENA's EMC2 task force (TF-EMC2) and was initiated in cooperation with seven other European NRENs (National Research and Education Networks). For more information about the project's background, please refer to http://www.terena.org/activities/scs/. SCS certificates are issued by the intermediate Cybertrust Educational CA, which in turn is signed by the GTE CyberTrust Global Root certificate, a root certificate owned by GlobalSign/Cybertrust which is preinstalled in countless SSL/TLS aware applications (all major operating systems, browsers, software suites, mobile devices). The SWITCHpki SCS CA hierarchy is shown below, using www.switch.ch as an example: RA models for SWITCHpki To participate in SWITCHpki, an organisation needs to sign an agreement where it declares to become an RA (registration authority). Two different models are currently available: SWITCHpki Retail Suitable for organizations requiring a small to medium number of certificates per year. Under this model, the RA operators of the organization will forward an approved request to one of the SWITCH RA operators, who will then issue the certificate through the interface provided by the platform of the CA (SwissSign or GlobalSign). SWITCHpki Bulk Suitable for organizations requiring a large number of certificates per year. Under this model, the RA operators of the organization get direct access to a Web interface on the CA platform and are able to approve requests and issue certificates independently of the SWITCH RA. RA operator prerequisites An organization's RA operator, who is expected to be familiar with PKI basics, serves as the point of contact for both employees/students of this organization and for SWITCH. The presentation The SWITCHpki RA operator: role and responsibilities gives an overview about the role of an RA operator. © 2008 SWITCH | Contact | Disclaimer | Search | 29.04.2008 разделы государственный герб срочный перевод доставка хим. реагент ваттметр эфирный антенна kaasi нард скачать бесплатный автономный электроснабжение медицинский перевод переработка резина измеритель петля фаза нуль gislaved отзыв три цвета: синий купить яйцеварку стоматологический услуга книга кремль нужный билет доставка хим. реагент лечение щитовидный железа мва купить широкоугольник измеритель rlc обед прамышленый альпинизм обзвон купить айсбест узи тошиба лечение щитовидный железа управление иваново вентеляционная решетка купить 6131 газонокосилка stiga вытяжка курьерский почта купить чейнджер 5440.16 (крышка) трансперсональный психология вентеляционная решетка электросчетчик гамма электропечь dimplex model lee rc сухой мороженый купля производственный комплекс брэнд restart плита крановый тележка три цвета: красный автоподъемник автоматический резка хендэ соната трехмерный презентация перегородка сантехкабин snr договор суррогатный мать креатин pki рукавичка доставка альпинизм два цвет ubiquam pki