Presentation is loading. Please wait.

Presentation is loading. Please wait.

TACAR Updates version 1.4.3 David Groep, NIKHEF. 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 2 David Groep – TACAR Aims  Trusted and.

Published byMarion Doyle Modified over 8 years ago

Similar presentations

Presentation on theme: "TACAR Updates version 1.4.3 David Groep, NIKHEF. 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 2 David Groep – TACAR Aims  Trusted and."— Presentation transcript:

1 TACAR Updates version 1.4.3 David Groep, NIKHEF

2 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 2 David Groep – davidg@eugridpma.org TACAR Aims  Trusted and Centralized place for obtaining CA root certificates  for download by users for use in browsers, mailers &c  for validation of roots obtained by other means  Not meant for policy validation  no minimum policy or technical requirements to get in  but CAs can be grouped (i.e. by IGTF AuthN Profile)  Focus on validation of the organisation that submits the root certificate(s)

3 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 3 David Groep – davidg@eugridpma.org TACAR Repository Function

4 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 4 David Groep – davidg@eugridpma.org TACAR immediate role for the IGTF  Authentic source of the trust anchors that go into the other distribution formats  helps those constructing the distribution …  Independent check for IGTF re-distributors  although still not all CAs are in TACAR …

5 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 5 David Groep – davidg@eugridpma.org Getting into it  Has been perceived “too slow”, or “impractical”  previously, a F2F meeting with a TERENA Officer (Licia) was required  is about to change … see next slides  has been perceived as “difficult”, or “too much work”  there is indeed paperwork to be done  that brings added value as an independent validation point  New policy to address some of these concerns

6 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 6 David Groep – davidg@eugridpma.org Paperwork required  Prepare a CD-ROM with  your root certificate  CP and/or CPS documents (PDF format)  Copy of Registration Letter  list of the root certificates and meta-data  name &c of the CA organisation  name of the CA representative  Copy of Accreditation Letter  list of administrators and managers allowed to make updates to TACAR for that CA  A Direct Responsible Person as an ultimate SoA  Paper versions of the Registration and Accreditation Letter  If you want to update this data electronically  PGP keys, cross signed with the TACAR representative  PGP signed versions of all of the above

7 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 7 David Groep – davidg@eugridpma.org New in v1.4.3: Trusted Introducers  Formerly all this had to be done with a TERENA Officer  Now, you can do it with a Trusted Introducer as well  appointed by the TACAR Community  one per CA coordinating body/organisation  that regularly meets CA representatives  TI then has to do all the work with Licia afterwards

8 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 8 David Groep – davidg@eugridpma.org Implementation  Policy v1.4.3 has been discussed extensively  Latest draft 22 Nov 2006  No comments received on TF-EMC2 after that  with EUGridPMA acceptance, majority of TACAR Community will have agreed  Will hopefully get everyone into TACAR this time …

9

Download ppt "TACAR Updates version 1.4.3 David Groep, NIKHEF. 9 th EUGridPMA ‘RAL’ meeting – Jan 2007 - 2 David Groep – TACAR Aims  Trusted and."

Similar presentations

Usage of PGP in TACAR 19th OGF Meeting Chapel Hill, USA February 1, 2007 Licia Florio Project Development Officer

Usage of PGP in TACAR 19th OGF Meeting Chapel Hill, USA February 1, 2007 Licia Florio Project Development Officer
RPKI Certificate Policy Status Update Stephen Kent.

RPKI Certificate Policy Status Update Stephen Kent.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Apr 20 th, 2009.

Classic X.509 secured profile version 4.2 Proposed Changes David Groep, Apr 20 th, 2009.
SAFE BioPharma Association CONFIDENTIAL1 SAFE Public Key Infrastructure (PKI) 2005 EDUCAUSE/Dartmouth PKI Deployment Summit.

SAFE BioPharma Association CONFIDENTIAL1 SAFE Public Key Infrastructure (PKI) 2005 EDUCAUSE/Dartmouth PKI Deployment Summit.
HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.

HIT Standards Committee: Digital Certificate Trust – Policy Question for HIT Policy Committee March 29, 2011.
Authorization WG Update David Kelsey EU Grid PMA, Copenhagen 27 May 2008.

Authorization WG Update David Kelsey EU Grid PMA, Copenhagen 27 May 2008.
4 th APGrid PMA F2F Meeting Academia Sinica, Taipei, Taiwan April 8, 2008 Agendahttp://www.apgridpma.org/meetings/index.html Call for note takers!

4 th APGrid PMA F2F Meeting Academia Sinica, Taipei, Taiwan April 8, 2008 Agendahttp:// Call for note takers!
INFSO-RI-508833 Enabling Grids for E-sciencE www.eu-egee.org JRA3 2 nd EU Review Input David Groep NIKHEF.

INFSO-RI Enabling Grids for E-sciencE JRA3 2 nd EU Review Input David Groep NIKHEF.
NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam 2005-10-17 Milan Sova CESNET.

NRENs supporting Grids using current Grid technology TERENA NREN-GRID Workshop Amsterdam Milan Sova CESNET.
Authentication Policy David Kelsey CCLRC/RAL 15 April 2004, Dublin

Authentication Policy David Kelsey CCLRC/RAL 15 April 2004, Dublin
CVE-2008-0166, lessons learned and actions David Groep, Nov 7 nd, 2008.

CVE , lessons learned and actions David Groep, Nov 7 nd, 2008.
The EU Grid PMA David Kelsey CCLRC/RAL 16 April 2004, Dublin

The EU Grid PMA David Kelsey CCLRC/RAL 16 April 2004, Dublin
CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukPKI1 Public Key Infrastructures CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
The TERENA Academic CA Repository. eIRG Meeting. Dublin, 16/04/2004 Diego R. Lopez – TF-AACE  Task Force on Authentication and.

The TERENA Academic CA Repository. eIRG Meeting. Dublin, 16/04/2004 Diego R. Lopez – TF-AACE  Task Force on Authentication and.
Updates from the EUGridPMA David Groep, Oct 11 th, 2011.

Updates from the EUGridPMA David Groep, Oct 11 th, 2011.
Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.

Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.
9/20/2000www.cren.net1 Root Key Cutting and Ceremony at MIT 11/17/99.

9/20/2000www.cren.net1 Root Key Cutting and Ceremony at MIT 11/17/99.
Computer Science Public Key Management Lecture 5.

Computer Science Public Key Management Lecture 5.
Community Services WI TF-EMC2 VC Meeting 29 June, 2011 Licia Florio

Community Services WI TF-EMC2 VC Meeting 29 June, 2011 Licia Florio

Similar presentations

Ads by Google