| Trustmark Definition Name | Version |
|---|---|
|
Addresses requirements for Organization repositories containing all CRLs issued by the Organization PKI.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for PKI certificate authorities' (CAs) availability.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for acceptable down time of PKI CA repositories.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for access enforcement as related to overall access control requirements.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with minimum security requirements for access enforcement as related to overall access control requirements.
|
1.0 |
|
Addresses requirements for the mechanisms for posting information into a repository including access control and communication mechanisms when needed to protect repository information.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with requirements for personnel to receive PKI-related security training.
|
1.0 |
|
This Trustmark Definition defines conformance and assessment criteria for compliance with requirements for personnel to receive PKI-related software training.
|
1.0 |
|
Addresses the requirement for PKI status servers to be audited with their corresponding certificate authority.
|
1.0 |
|
Addresses requirements for the destruction of PKI status server private signature keys.
|
1.0 |
|
Addresses authentication requirements for private key activation.
|
1.0 |
|
Addresses the requirement for CAs must not issue subscriber certificates that extend beyond the expiration date of their own certificates and public keys.
|
1.0 |
|
Addresses requirements for the validity of PKI subscriber certificates to not exceed routine re-key identity requirements.
|
1.0 |
|
Addresses the requirement for subscriber private dual use keys to not be escrowed.
|
1.0 |
|
Addresses the requirements for limiting the lifetime of PKI subscriber key management certificates.
|
1.0 |
|
Addresses the requirement for PKI subscriber private signature keys to not be escrowed.
|
1.0 |
|
Addresses backup handling for keys used with PKI.
|
1.0 |
|
Addresses the requirement for subscribers of Organization CAs at the Basic Assurance Level shall agree to accurately represent themselves in all communications with the PKI authorities.
|
1.0 |
|
Addresses the requirement for an organization to prohibit PKI subscriber signature keys from being held in trust by third parties.
|
1.0 |
|
Addresses the requirement for subscribers to acknowledgetheir responsibilities for handling their PKI certificates.
|
1.0 |
|
Addresses the requirement for subscribers to acknowledge in writing their responsibilities for handling their PKI certificates.
|
1.0 |
|
Addresses the requirement to document training awareness plans for significant changes to PKI operations.
|
1.0 |
|
Addresses the requirement for a trusted agent of the issuer to perform biometric 1:1 matching for resetting PKI private key activation data..
|
1.0 |
|
Addresses the requirement for individuals may only assume one of the Officer, Administrator, and Auditor roles.
|
1.0 |
|
Defines conformance and assessment criteria for compliance with minimum security requirements for plan of action and milestones development as related to overall certification accreditation and security assessments requirements.
|
1.0 |
