Certificate Policy

Certificate Policy [CP] Control

[1] The Certificate Policy for the Digi-CA™ [2] is an important document because it clearly identifies the processes and procedures of your CA operation in a single document. It also adds to the credibility, security and acceptance when getting the people to accept and use your Digital Certificates. As you will see in Section 7, there is a standard recognized format for writing your Certificate Policy but we suggest that you don’t need to follow this RFC format unless your CA requires certification [3] or accreditation. The Digi-CAST1™ Team will advise you on the best approach for your requirements.

In sub section 2.5.7.3, the Certificate Policy is the ‘Who, What, Where and How’ document that describes the principles of the Digi-CA™ usage and how they are to be distributed. This Certificate Policy is agreed before the Digi-CA™ is operational and all Digi-IDs™ must then be deployed in accordance with the Certificate Policy.

• Certificate Practice Statement [4] [CPS] Control

CPS control using your own CPS is only required if you are building a Trust Centres [5] using Digi-CA Server™ Xg. The CPS should follow the RFC 2527 format in compliance [3] with European Telecommunications Standards Institute [ETSI] 101 456. The Digi-CAST1™ Team will advise your legal technical teams on the best approach using these internationally recognized standards [3].

Creating your own CPS is a time consuming and complex process that will require several specialist consultants and may take several months to complete. Referencing an existing CPS such as the one used by Digi-Sign is probably the most practical approach. You should only consider drafting your own CPS if you are setting up a national or international Trust Centre.




• Demonstration

Almost every Digi-CA™ installation has one or more customized features added to the system to meet the customer’s specific requirements. The requirements range from overall Certificate management and control, to system integration, automation and/or accounting requirements.

Digi-CA™ Service as the Managed CA solution and Digi-CA Server™ as the Software CA product ‘in a box’, both use the same browser–based interfaces. To get a better understanding of how Digi-CA™ is controlled and Administered manually (much of the Administration can be automated in the Xp and Xg systems), its basic functionality, features and benefits, visit the following URL:

www.digi-sign.com/demos/digi-ca [6]

…and see an online demonstration of how the Digi-CA™ system works.