Groups - "Security Printer" Model for CA Operations (Lockstep WP03 CA as Security Printer (1.1).pdf) uploaded

[swilson@lockstep.com.au]

This work is submitted for discussion as input to a new legal issues white
paper.  

Comments welcome!! 

 -- Mr. Stephen Wilson

The document named "Security Printer" Model for CA Operations (Lockstep
WP03 CA as Security Printer (1.1).pdf) has been submitted by Mr. Stephen
Wilson to the OASIS Public Key Infrastructure Adoption (PKIA) TC document
repository.

Document Description:

This white paper describes a new way of conceptualising backend CAs,
likening  them to the security printers than routinely manufacture cheques,
prescription pads, concert tickets etc.  The physical security, operational
security and accreditation requirements are all very similar.  This type of
CA would automatically generate certificates on request from authorised
RAs.  

The model may dramatically reduce CAs' legal liability, because they would
be distanced from errors & omissions committed by RAs and by end users. 
Backend CAs would naturally remain responsible for the quality of their
cryptographic processes, operations, personnel and so on. 

Just as it is inconceivable that a well run cheque printer would be liable
for the consequences of a bank customer writing a bad cheque, CAs in this
model would be insulated from many types of potential misadventure in PKI
implementations. 


View Document Details:
http://www.oasis-open.org/apps/org/workgroup/pki/document.php?document_id=25431

Download Document:  
http://www.oasis-open.org/apps/org/workgroup/pki/download.php/25431/Lockstep%20WP03%20CA%20as%20Security%20Printer%20%281.1%29.pdf


PLEASE NOTE:  If the above links do not work for you, your email application
may be breaking the link into two pieces.  You may be able to copy and paste
the entire link address into the address field of your web browser.

-OASIS Open Administration