HKU Grid Certificate Authority HKU.Grid.CA CP/CPS Review

hku grid certificate authority hku grid ca n.w
1 / 5
Embed
Share

"Explore the updates and revisions made during the 21st APGrid PMA F2F meeting on 18th March 2018 for the HKU Grid Certificate Authority CP/CPS document. Changes include removal of Computer Centre from the title, revision of certificate use purposes, addition of OCSP service, update of key lengths, and more."

  • HKU Grid Certificate
  • CP/CPS Review
  • APGrid PMA
  • Updates
  • Revisions
rayaanacharya
kai_718 Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. HKU Grid Certificate Authority (HKU Grid CA) CP/CPS Reviewer s Comments Bill Yau (billyau_hpc@hku.hk) 21stAPGrid PMA F2F meeting, 18thMarch 2018

  2. Timeline (20thF2F Meeting) Draft CP/CPS 3.0 Submitted for Review 19 Oct 23 Nov: 1stRound Review 14 Feb 20 Feb: 2ndRound Review Sibling APGridPMA CAs Involved: KISTI, KR (Sang-Un) IGCA, IN (Santhosh) 2 21stAPGrid PMA F2F meeting, 18thMarch 2018

  3. Summary of Approved Changes 1. Computer Centre has been removed from Document Title and H KU Grid CA title [1.2][1.6.1] Document Version has been changed to 3.0 [1.2] Document Date has been changed to 9 February 2018 [1.2] CP/CPS OID has been modified [1.2][7.1.2] OCSP service have been added [1.3.3] [1.6.1] [3.1.5][3.2.3][4.1.2][ 4.9.9][4.9.10][6.3.2][7.1.2] New version of Guidelines on Private Key Protection has been us ed as reference [1.3.3][4.1.2] Purposes of certificate use has been revised [1.4.1] URL of CA root certificate and CRL have been modified [2.2][7.1.2] 2. 3. 4. 5. 6. 7. 8. 3 21stAPGrid PMA F2F meeting, 18thMarch 2018

  4. Summary of Approved Changes 9. Direct contact in person has been added as a way of certificate revoc ation request [3.4][4.9.3] 10. Certificate enrollment/rekey process have been revised [4.1.2][4.7.3] 11. Length of user/host keys has been updated to at least 2048 bits lon g [4.1.2][6.1.5] 12. CA s key pair length has been updated to 4096 bits [6.1.5][7.1.3] 13. Record retention period has been changed to 3 years [5.4.3][5.5.2] 14. Email for Issuer Alternative Name has been changed to gridca@hku.h k [7.1.2] 15. CN of issuer name form has been updated to HKU Grid CA 2 [7.1.4] 16. Minor grammatical error have been corrected [1.3.2][1.3.3][1.3.4] 17. Section of Bibliography has been removed 4 21stAPGrid PMA F2F meeting, 18thMarch 2018

  5. Some Feedback on Comments Few minor corrections might be still required as follows: 1) Document titles in front page and in Section 1 are not identical 2) Links are broken - http://ca.grid.hku.hk/cacert/cacert2.pem - http://ca.grid.hku.hk/crl/cacrl2.pem - http://ca.grid.hku.hk/crl/cacrl2.der - http://ca.grid.hku.hk/pki/pub/cacert/cacert2.crt This CP/CPS version 3.0 is planned to be used on a new host which is not online yet, thus these paths are currently empty. The addresses would be populated when the host is online (and start signing certificates). 5 21stAPGrid PMA F2F meeting, 18thMarch 2018

Related


No related presentations.

More Related Content