PKI Service Integration Guidelines (For Developers)
Ensuring the proper integration of Public Key Infrastructure (PKI) services is essential for maintaining the security and integrity of digital systems. RISA offers crucial services for certificate validation and timestamping, which are foundational to secure a proper use of the digital signature service. When using the digital signature and other PKI services, it is important to adhere to specific guidelines that ensure the authentication, integrity and reliability of the provided services. This document outlines the key areas of focus, including certificate validity check, revocation, certificate expiration, and signature validation check, to help users and developers to meet these critical standards.
Certificate Revocation
Objective: Ensure your system correctly performs the certificate validity check. Guidelines: ...
Certificate Expiration
Objective Prevent the use of expired certificates in your system. Guidelines Automatically ...
Signature Validation
Objective: Validate the authenticity and integrity of digital signatures, including Long-Term Va...
Password Management
Objective: Ensure secure handling of user certificate passwords. Guidelines: Do not store us...
Timestamp Validation (Optional)
Objective: Validate the timestamps associated with digital signatures to ensure their reliabili...