https://artifacts.trustmarkinitiative.org/lib/tds/pki-subscriber-private-signature-keys-not-copied/1.0/PKI Subscriber Private Signature Keys Not Copied1.0Addresses backup handling for keys used with PKI.2018-10-30T00:00:00.000Zhttps://trustmarkinitiative.org/Trustmark InitiativePRIMARYTrustmark Supporthelp@trustmarkinitiative.org555-555-5555https://trustmarkinitiative.org/Organizations that are interested in implementing or making use of digital information systems in a manner that complies with widely accepted public key infrastructure standards and practices such as the X.509 Certificate Policy For The
Federal Bridge Certification Authority (FBCA).Organizations that want to demonstrate that they provide and/or consume digital information services in a manner that complies with widely accepted public key infrastructure standards and practices such as the X.509 Certificate Policy For The
Federal Bridge Certification Authority (FBCA).Organizations and individuals that require their trusted partners' computer and information systems to comply with widely accepted public key infrastructure standards and practices such as the X.509 Certificate Policy For The
Federal Bridge Certification Authority (FBCA).Organizations that audit or evaluate other organizations for compliance with widely accepted public key infrastructure standards and practices such as the X.509 Certificate Policy For The
Federal Bridge Certification Authority (FBCA).Any organization or business entity may act as a Trustmark Provider for trustmarks under this Trustmark Definition.Any individual employed or contracted by the Trustmark Provider may act as the assessor for trustmarks under this Trustmark Definition.For any trustmark issued under this Trustmark Definition, the Trustmark Provider must revoke the trustmark upon any condition whereby one or more Conformance Criteria cease to be satisfied.This Trustmark Definition requires no extension data.This artifact is published by the Georgia Tech Research Institute (GTRI) as part of the Trustmark Initiative. This artifact and the information contained herein is provided on an "AS IS" basis, and GTRI disclaims all warranties, express or implied, including but not limited to any warranty that the use of the information herein will not infringe any rights or any implied warranties or merchantability or fitness for a particular purpose. In addition, GTRI disclaims legal liability for any loss incurred as a result of the use or reliance on the document or the information contained herein.PIV-ISecurityIdentityFederal BridgeFBCA-CPX.509 Certificate Policy For The
Federal Bridge Certification Authority (FBCA)
Version 2.27
December 2, 2013
Similarly, if the criteria specify a "Selection" among multiple options (e.g. [Selection (one or more): as needed; ]), the option(s) implemented by the organization must also be defined and documented.]]>1C1Subscriber private signature keys MAY NOT be backed up or copied.Section 6.2.4.2]]>NOTE:If an assessment step references organization-defined elements (E.g. <organization-defined personnel or roles>, <organization-defined frequency>, etc.), corresponding citations/excerpts must be provided to confirm that the organization has established and documented these values and that they apply as referenced in the conformance criteria.
Similarly, if a "Selection" among multiple options (e.g. [Selection (one or more): as needed; ]) is specified, evidence must be provided to establish that the option(s) implemented by the organization have been defined and documented.
The assessment step shall not be marked as satisfied without this evidence.]]>1PKI Subscriber Private Signature Keys Not CopiedDoes the organization prohibit backing up or copying PKI subscriber private signature keys?A1