Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

NISTIR 7924 (DRAFT)

Reference Certificate Policy (2nd Draft)

Date Published: May 2014
Comments Due: August 1, 2014 (public comment period is CLOSED)
Email Questions to: nistir7924-comments@nist.gov

Author(s)

Harold Booth (NIST), Andrew Regenscheid (NIST)

Announcement

NIST announces the public comment release of second draft of NIST Interagency Report (NISTIR) 7924, Reference Certificate Policy. The purpose of this document is to identify a set of security controls and practices to support the secure issuance of certificates. It was written in the form of a Certificate Policy (CP), a standard format for defining the expectations and requirements of the relying party community that will trust the certificates issued by its Certificate Authorities (CAs).

NIST released the first draft of this publication in April 2013 and received extensive public comments. This revised draft incorporates changes requested by commenters, many intended to improve the security controls identified in the document, provide additional flexibility for CAs, and clarify ambiguities in the previous release.

Abstract

Keywords

certificate policy; digital certificate; certificate authority; public key infrastructure
Control Families

Identification and Authentication;

Documentation

Publication:
Second Draft NISTIR 7924

Supplemental Material:
Comment Template (word)