The Certificate Policy: What It Should Do

• List explicitly all supported applications and protocols

• Be explicit about non-repudiation requirements

• Separate authentication from authorization

• Manage liability

• Hold the CA responsible for its own security

Previous slide

Next slide

Back to first slide

View graphic version