{"title":"评估证书政策-使用公钥基础设施评估指南的唯一政府证书颁发机构的认证实践声明:正在进行的研究","authors":"Dea Saka Kurnia Putra, Edita Prima","doi":"10.1109/isitia.2018.8710889","DOIUrl":null,"url":null,"abstract":"OSD PSE is the Indonesian Government's Certification Authority (CA) for National e-Procurement System and later named OSD PSE G2. It has a unique hierarchical structure under the OSD Lemsaneg. As an Issuing CA, the OSD PSE G2 publishes and guarantee the quality of Certificate Policy and Certification Practice Statement (CP-CPS) in order to gain the PKI user's trustworthy. In this article, we analyze the CP-CPS version 1.0 that published by OSD PSE G2. For this purpose, we apply the methodology of PKI Assessment Guidelines (PAG). The quality assessment of this CP-CPS, including its compliance to the related reference/standard, namely: CP OSD Lemsaneg v.1.1; RFC 3647; and CA Business Practice Disclosure Principle on Trust Service Principles and Criteria for Certification Authorities (BPDP-TSPCCA) version 2.0. We finally found that the CP-CPS version 1.0 does not comply with related standard and reference. Hence, the CP-CPS need to be updated following the current condition of OSD PSE G2.","PeriodicalId":388463,"journal":{"name":"2018 International Seminar on Intelligent Technology and Its Applications (ISITIA)","volume":"26 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Evaluating Certificate Policy - Certification Practice Statement of Unique Government Certification Authority using Public Key Infrastructure Assessment Guidelines: Research in Progress\",\"authors\":\"Dea Saka Kurnia Putra, Edita Prima\",\"doi\":\"10.1109/isitia.2018.8710889\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"OSD PSE is the Indonesian Government's Certification Authority (CA) for National e-Procurement System and later named OSD PSE G2. It has a unique hierarchical structure under the OSD Lemsaneg. As an Issuing CA, the OSD PSE G2 publishes and guarantee the quality of Certificate Policy and Certification Practice Statement (CP-CPS) in order to gain the PKI user's trustworthy. In this article, we analyze the CP-CPS version 1.0 that published by OSD PSE G2. For this purpose, we apply the methodology of PKI Assessment Guidelines (PAG). The quality assessment of this CP-CPS, including its compliance to the related reference/standard, namely: CP OSD Lemsaneg v.1.1; RFC 3647; and CA Business Practice Disclosure Principle on Trust Service Principles and Criteria for Certification Authorities (BPDP-TSPCCA) version 2.0. We finally found that the CP-CPS version 1.0 does not comply with related standard and reference. Hence, the CP-CPS need to be updated following the current condition of OSD PSE G2.\",\"PeriodicalId\":388463,\"journal\":{\"name\":\"2018 International Seminar on Intelligent Technology and Its Applications (ISITIA)\",\"volume\":\"26 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-08-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 International Seminar on Intelligent Technology and Its Applications (ISITIA)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/isitia.2018.8710889\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 International Seminar on Intelligent Technology and Its Applications (ISITIA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/isitia.2018.8710889","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
摘要
OSD PSE是印尼政府的国家电子采购系统认证机构(CA),后来被命名为OSD PSE G2。它在OSD Lemsaneg下有一个独特的层次结构。OSD PSE G2作为颁发CA,发布并保证CP-CPS (Certificate Policy and Certification Practice Statement)的质量,以获得PKI用户的信任。在本文中,我们分析了OSD PSE G2发布的CP-CPS 1.0版本。为此,我们采用了PKI评估指南(PAG)的方法。该CP- cps的质量评估,包括其是否符合相关参考/标准,即:CP OSD Lemsaneg v.1.1;RFC 3647;《CA业务实践披露原则:认证机构信托服务原则和标准》(BPDP-TSPCCA) 2.0版。我们最终发现CP-CPS 1.0版本不符合相关标准和参考。因此,需要根据OSD PSE G2的当前情况更新CP-CPS。
Evaluating Certificate Policy - Certification Practice Statement of Unique Government Certification Authority using Public Key Infrastructure Assessment Guidelines: Research in Progress
OSD PSE is the Indonesian Government's Certification Authority (CA) for National e-Procurement System and later named OSD PSE G2. It has a unique hierarchical structure under the OSD Lemsaneg. As an Issuing CA, the OSD PSE G2 publishes and guarantee the quality of Certificate Policy and Certification Practice Statement (CP-CPS) in order to gain the PKI user's trustworthy. In this article, we analyze the CP-CPS version 1.0 that published by OSD PSE G2. For this purpose, we apply the methodology of PKI Assessment Guidelines (PAG). The quality assessment of this CP-CPS, including its compliance to the related reference/standard, namely: CP OSD Lemsaneg v.1.1; RFC 3647; and CA Business Practice Disclosure Principle on Trust Service Principles and Criteria for Certification Authorities (BPDP-TSPCCA) version 2.0. We finally found that the CP-CPS version 1.0 does not comply with related standard and reference. Hence, the CP-CPS need to be updated following the current condition of OSD PSE G2.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
