Method to Prove Possession of Private Key

The CA will perform proof of possession tests for CSRs created using reversible asymmetric algorithms (such as RSA) by validating the signature on the CSR submitted with the Certificate Application.

Authentication of an Organization Identity

Responsibility of the RA.

Authentication of an Individual Identity

Responsibility of the RA.

Non-verified Subscriber Information

Responsibility of the RA.

Validation of Authority

During the initial onboarding process, the Customer identifies the individual who will act as the RA and be responsible for the Customer RA credentials. A one-time passcode (OTP) used to create the RA credential is generated and securely transmitted to the identified RA.

Validation of Authority for Subscriber Certificates is the responsibility of the RA.

Criteria for Interoperation

Responsibility of the RA.