TRGRID CA SELFAUDIT UPDATES Feyza Eryol TBTAK ULAKBM
TR-GRID CA SELF-AUDIT & UPDATES Feyza Eryol TÜBİTAK ULAKBİM
Overview General Information Statistics Self-Auditing Report Policy Updates 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
General Information Accredited in September 2005. Single CA in Turkey for academic field. It provides X 509 certificates for academic research and educational activities in Turkey. Managed by TÜBİTAK ULAKBİM http: //www. grid. org. tr/ca CP/CPS: Follows RFC 3647 Current version 2. 3 since May, 2014 (We did not present the self-audit but we changed CP/CPS according to periodic self-audit results. ) 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
Statistics Certificates Number Valid Expired Revoked Users 1841 263 1330 248 Servers 358 27 204 127 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
Self Audit Performed by GFD. 169 Scores: 61 items with score A (good) 2 items with score B (minor change) 4 item with score X (N/A) 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
Self Audit (cont. ) B (minor changes) 3. 2(1) is defined different sections in CP/CPS, it is needed to be defined in 4. 1, 4. 2, 4. 6, 4. 7 3. 2. 3(12) is defined in CP/CPS but in practice it is not easy to follow all documents in an auditable form. These items are collected and arranged 4 times in a year. 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
Self Audit (cont. ) B (minor changes) 3. 2(1) is defined different sections in CP/CPS, it is needed to be defined in 4. 1, 4. 2, 4. 6, 4. 7 3. 2. 3(12) is defined in CP/CPS but in practice it is not easy to follow all documents in an auditable form. These items are collected and arranged 4 times in a year. 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
Self Audit (cont. ) X (N/A) 3. 1. 2(9) Online CA 3. 1. 2(10) Secure Environment 3. 1. 2(16) Online CA 3. 1. 6(41) Hardware Token 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
Policy Updates There is a need to change the CRL path of the TR-Grid CA Identity vetting with e-Government system: Benefits for checking the status of a person whenever we want without any updates from the researcher. Do not need to store any identity card after f-2 -f identity vetting and getting ID number for Turkish citizen. These updates will be done at the end of 2016 with CP/CPS updates. 36 th EUGrid. PMA meeting, Bratislava, Slovakia Jan 18 -20, . 2016
- Slides: 9