Method to Prove Possession of Private Key
The CA will perform proof of possession tests for CSRs created using reversible asymmetric algorithms (such as RSA) by validating the signature on the CSR submitted with the Certificate Application.
Authentication of an Organization Identity
Responsibility of the RA.
Authentication of an Individual Identity
Responsibility of the RA.
Non-verified Subscriber Information
Responsibility of the RA.
Validation of Authority
During the initial onboarding process, the Customer identifies the individual who will act as the RA and be responsible for the Customer RA credentials. A one-time passcode (OTP) used to create the RA credential is generated and securely transmitted to the identified RA.
Validation of Authority for Subscriber Certificates is the responsibility of the RA.
Criteria for Interoperation
Responsibility of the RA.