Documents of certification authorities,
policies, practice statements, agreements in the public key infrastructure

András Gerencsér h6389ger@helka.iif.hu

The security stipulations and the pledge of trust of the participating parties are defined basically by the certification policies and by the certification policy statements in the public key infrastructures (PKI). The technological facilities are of secondary importance. Further documents are providing the organisational and judicial completeness at the well functioning certificate service providers.

The documentation framework presented in RFC 2527 and in its new draft version takes the performances of PKI with a proper thoroughness into consideration. The providers and their customers have to be aware these topics. There are samples of certification policies in several countries, which forms the base from which other policies can be written. The sample documents help to protect the rights of subscribers and of relying parties, and they disseminate the common culture of digital certification. The paper analyses the documents issued in the public administrations or by private service providers of various countries. It is crucial in the adaptation of new technologies to find the proper technical terms and expressions in the Hungarian language...