34,333
edits
Changes
→Registration Authorities (RA)
== Registration Authorities (RA) ==
The ''registration authority'' (RA) is the component of a PKI which is responsible for accepting requests for digital certificates and authenticating the person or organization making the request.
The specific authentication process used depends of the ''class'' of certificate being requested:
* '''Class 1'' - Involves the verification of an individual via email. A class 1 certificate can be used to digitally sign email messages. Typically requires an email address, full name and physical address. the application process will also walk the applicant through the process of creating a public/private key pair.
* '''Class 2''' - Used to sign software so that a person using the software can verify the authenticity of the software vendor.
* '''Class 3''' - Provided to companies wishing to set up their own certificate authority.
Once the validation process is complete the RA transmits the request to the CA which passes it to the certificate server (CS). The CS generates the digital certificate, including the appropriate information (including the applicants public key) and sends the certificate to the applicant.
== Certificate Repositories ==