en:st-cca-services.html

Rozdíly

Zde můžete vidět rozdíly mezi vybranou verzí a aktuální verzí dané stránky.

Odkaz na výstup diff

Následující verze
Předchozí verze
en:st-cca-services.html [2010/02/03 22:52]
127.0.0.1 external edit
en:st-cca-services.html [2022/03/08 14:35] (aktuální)
Jan Chvojka [Server CESNET CA 4 Certificates]
Řádek 1: Řádek 1:
  
  
-====== Services provided by the CESNET ​CA ======+====== Services provided by the CESNET ​PKI ======
  
-Services provided by the CESNET ​CA are described in certificate policies and Certificate Practice Statement ​CESNET CA available in the chapter [[ch-cp-cps.html|Certificate Policies and Certificate Practice Statement]].+Services provided by the CESNET ​PKI are described in certificate policies and Certificate Practice Statement available in the chapter [[ch-cp-cps.html|Certificate Policies and Certificate Practice Statement]].
  
-CESNET CA provides the following ​services:+CESNET CA is not accredited as a provider of certification ​services ​in the sense of Act No. 227/2000 Sb. Certificates issued by CESNET CA cannot be used to secure communication with the state administration. They are designed for use in national and international research projects and for applications operated by members of CESNET, a.l.e.
  
-  * [[#​personal_certificates_issuance|Personal Certificates Issuance]] < +CESNET PKI provides the following services:
-  * [[#​server_certificates_issuance|Server Certificates Issuance]] < +
-  * [[#​server_certificates_sureserver_edu|Server Certificates SureServer EDU]] < +
-  * [[#​establishing_of_registration_authorities|Establishing of Registration Authorities]] < +
-  * [[#​certification_of_other_certificate_authorities|Certification of other Certificate Authorities]] <+
  
-===== Personal Certificates ​Issuance =====+  * [[#Personal ​TCS certificates|Personal TCS certificates]] 
 +  * [[#Server TCS certificates|Server TCS certificates]] 
 +  * [[#Personal CESNET CA 4 Certificates|Personal CESNET CA 4 Certificates]] 
 +  * [[#Server CESNET CA 4 Certificates|Server CESNET CA 4 Certificates]] 
 +  * [[#​establishing_of_registration_authorities|Establishing of Registration Authorities]] 
 +  * [[#​certification_of_other_certificate_authorities|Certification of other Certificate Authorities]]
  
-Personal ​certificate issued by the CESNET CA can be used for authentication,​ digital signature, and data encryption.+===== Personal ​TCS certificates =====
  
-The personal ​certificates ​validity is 13 months maximum.+CESNET CA mediates issuance of server ​certificates ​TCS. These certificates are currently issued by [[http://​www.sectigo.com|Sectigo]],​ whose root certificates are implicitly trusted by most internet browsers.
  
-due to capacity and organizational reasons, personal certificates ​can be issued only to+The detailed procedure for creating a certificate applicationregistration and issuance of a certificate is described in the [[en:tcs-personal.html|TCS Personal Certificates manual]]. 
 +===== Server TCS certificates ​=====
  
-  * persons participating in CESNET's research activities, < +CESNET ​CA mediates issuance ​of server certificates TCS. These certificates are currently issued ​by [[http://​www.sectigo.com|Sectigo]],​ whose root certificates are implicitly trusted ​by most internet browsers
-  * administrators ​of hosts and services operated ​by members of CESNET, ale. and by insitutions participating in CESNET'​s research activities, and < +
-  * CESNET employees<+
  
-===== Server ​Certificates ​Issuance ​=====+The detailed procedure for creating a certificate application,​ registration and issuance of a certificate is described in the [[en:​st-guide-tcs-server2.html|TCS Server Certificates manual]]. 
 +===== Personal CESNET CA 4 Certificates =====
  
-Server certificates ​can be used for authenticating network hosts and services.+Personal certificate issued by the CESNET PKI can be used for authentication,​ digital signature, ​and data encryption. Personal CESNET CA 4 certificates are issued with a validity of 13 months. The signature algorithm is RSA, the key length is 2048 or 4096 bits.
  
-Server ​certificates ​are issued ​for hosts and services operated by+Personal CESNET CA 4 certificates ​can be issued ​to
  
-  * institutions ​participating in CESNET'​s research activities, ​< +  * persons ​participating in CESNET'​s research activities,​ 
-  * members of CESNET, a. l. e., < +  * administrators of hosts and services operated by members of CESNET, a. l. e. and by insitutions participating in CESNET'​s research activitiesand 
-  * CESNET ​itself<+  * CESNET ​employees. 
 + 
 +===== Server CESNET CA 4 Certificates ===== 
 + 
 +Server certificates can be used for authenticating network hosts and services. Personal CESNET CA 4 certificates are issued with a validity of 13 months. The signature algorithm is RSA, the key length is 2048 or 4096 bits. 
 + 
 +Server certificates are issued for hosts and services operated by
  
-===== Server Certificates SureServer EDU =====+  * institutions participating in CESNET'​s research activities,​ 
 +  * members of CESNET, a. l. e., 
 +  * CESNET itself.
  
-CESNET CA mediates issuance of server certificates SureServer EDU. These certificates are issued by [[http://​www.globalsign.com/​|GlobalSign]],​ whose root certificates are implicitly trusted by most internet browsers. 
  
 ===== Establishing of Registration Authorities ===== ===== Establishing of Registration Authorities =====
Poslední úprava:: 2011/12/15 01:16