UNINETT PCA Policy Statements
RFC 1875

Document Type RFC - Informational (December 1995; No errata)
Was draft-uninett-pca-policy (individual)
Last updated 2013-03-02
Stream Legacy
Formats plain text html pdf htmlized bibtex
Stream Legacy state (None)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state RFC 1875 (Informational)
Telechat date
Responsible AD (None)
Send notices to (None)
Network Working Group                                           N. Berge
Request for Comments: 1875                    Norwegian Computing Center
Category: Informational                                    December 1995

                     UNINETT PCA Policy Statements

Status of this Memo

   This memo provides information for the Internet community.  This memo
   does not specify an Internet standard of any kind.  Distribution of
   this memo is unlimited.

Table of Contents

   1.   Introduction.......................................2
   2.   PCA Identity.......................................2
   3.   UNINETT - a brief overview.........................2
   4.   PCA Scope..........................................2
   4.1  The certification tree.............................3
   4.2  Use of Registration Authorities (RAs)..............3
   5.   PCA Security & Privacy.............................3
   5.1  Security requirements imposed on the PCA...........3
   5.2  Security requirements imposed on CAs...............4
   5.3  Security requirements imposed on RAs...............4
   5.4  Measures taken to protect the privacy of any
        information collected in the course of certifying
        CAs and (for CAs) users............................4
   6.   Certification Policy...............................5
   6.1  Policy and procedures when certifying CAs..........5
   6.2  Policy and procedures when certifying RAs..........5
   6.3  Policy and procedures when certifying users........5
   6.4  Validity interval for issued certificates..........6
   6.5  The CAs right to a DN and procedures to resolve DN
        conflicts..........................................6
   6.6  The users right to a DN and procedures to resolve
        DN conflicts.......................................6
   7.   Certificate Management.............................7
   8.   CRL Management.....................................7
   9.   Naming Conventions.................................8
   10.  Business Issues....................................9
   10.1 Legal agreement concerning CAs.....................9
   10.2 Legal agreement concerning RAs.....................9
   10.3 Fees...............................................9
   11.  Other..............................................9
   11.1 Distribution of software needed by CAs, RAs and
        users..............................................9
   12.  Security Considerations............................9

Berge                        Informational                      [Page 1]
RFC 1875             UNINETT PCA Policy Statements         December 1995

   13.  References........................................10
   14.  Author's Address..................................10

1. Introduction

   This document provides information about policy statements submitted
   by the UNINETT Policy Certification Authority (UNINETT PCA).

   It's purpose is to provide information to members of the Internet
   community who wish to evaluate the trust they can place in a
   certification path that includes a certificate issued by the UNINETT
   PCA, or to set up a CA to be certified by the UNINETT PCA.

2. PCA Identity

   Distinguished Name (DN): C=no, O=uninett, OU=pca

   The UNINETT PCA will be run by:
   Norwegian Computing Center
   Gaustadallien 23
   P.O.Box 114 Blindern,
   N-0314 Oslo, Norway

   Contact person:
   Nils Harald Berge
   Email: Nils.Harald.Berge@nr.no
   Tel.: (+47) 22 85 25 00
   Fax : (+47) 22 69 76 60

   Duration: This policy is valid from Oct 1, 1995 to Jan 1, 1998

   Info about this PCA is available at: http://www.uninett.no/pca/

3. UNINETT - a brief overview

   UNINETT is a Limited Company (AS) operating the Norwegian network for
   academics and research. It is incorporated under Norwegian law, and
   it's company number is 968100211.

   More information is available from the UNINETT web server at:
   http://www.uninett.no/

4. PCA Scope

   The scope of the UNINETT PCA is determined by UNINETT Policy. It will
   chiefly certify CAs to run on behalf of legal entities such as
   schools and companies.

Berge                        Informational                      [Page 2]
RFC 1875             UNINETT PCA Policy Statements         December 1995

4.1 The certification tree

   The certification tree beneath the UNINETT PCA comprise three
   distinct entities: Certification Authorities (CAs), Registration
   Authorities (RAs) and users. CAs are described in the PEM documents
   [1,2,3,4]. An explanation of RAs is given bellow.

   There will be one CA, with possible sublevel CAs, per UNINETT member
   organization. The CA may be run by the organization itself, or by the
   organization running the PCA for organizations who do not want to
   take on the responsibility themselves.

4.2 Use of Registration Authorities (RAs)

   Since the CA may be located far away from the users, local
   authorities are needed for physical identification/authentication of
Show full document text