TTM™ for Enrolment of Users

Due to the many variations of Certificate delivery in the Package Method and the fact that the RSA is seeking a simple solution, we advise that you use the Process Methods for your Digi-CA™ Service Certificate deployment. There are four simple steps to the enrolment of users in the Process Method:

• Invitation E-mail

• The User receives an email invitation to enroll for their Certificate. In the email is an encrypted, single use URL.

• Certificate Enrolment Application Form

• The unique URL is the Enrolment Application Form and the user completes this on line form before submitting it for approval.

• Depending on the Certificate Policy [CP] agreed with the Digi-CAST1™ Team, the number of fields on this form and the level of personal or unique questions will determine how easy/difficult it is to receive bogus Certificate requests (but remember that the URL is an encrypted, single use URL to remove the risk of being shared).

• Certificate Approval / Rejection

• The form details are returned to the Administrator who is then responsible for adhering to the CP for the Digi-CA™ and under the terms of this CP either approves or rejects the application as appropriate.

• Certificate Activation

• The user receives a second email containing a new encrypted, single use URL. By clicking on this, the Certificate is automatically activated.

The following flow diagram shows this simple process