idnits 2.17.1 

draft-ietf-sidr-cps-01.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

     No issues found here.

  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

     No issues found here.

  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

  ** There are 12 instances of too long lines in the document, the longest
     one being 33 characters in excess of 72.


  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the IETF Trust and authors Copyright Line does not
     match the current year

  -- The document date (January 2013) is 4118 days in the past.  Is this
     intentional?


  Checking references for intended status: Best Current Practice
  ----------------------------------------------------------------------------

     (See RFCs 3967 and 4897 for information about using normative references
     to lower-maturity documents in RFCs)

  == Missing Reference: 'RFC6480' is mentioned on line 368, but not defined

  == Missing Reference: 'RFC6384' is mentioned on line 499, but not defined

  == Missing Reference: 'RFC6486' is mentioned on line 546, but not defined

  ** Obsolete undefined reference: RFC 6486 (Obsoleted by RFC 9286)

  == Missing Reference: 'RFC6482' is mentioned on line 547, but not defined

  == Missing Reference: 'RFC6481' is mentioned on line 560, but not defined

  == Missing Reference: 'OMITTED' is mentioned on line 1237, but not defined

  == Missing Reference: 'RFC6489' is mentioned on line 1235, but not defined

  == Unused Reference: 'RFC3280' is defined on line 1590, but no explicit
     reference was found in the text

  == Unused Reference: 'BGP4' is defined on line 1606, but no explicit
     reference was found in the text

  == Unused Reference: 'FIPS' is defined on line 1609, but no explicit
     reference was found in the text

  == Unused Reference: 'RSA' is defined on line 1614, but no explicit
     reference was found in the text

  -- Duplicate reference: RFC2119, mentioned in 'RFC3280', was also mentioned
     in 'RFC2119'.

  ** Obsolete normative reference: RFC 6485 (Obsoleted by RFC 7935)

  -- Obsolete informational reference (is this intentional?): RFC 1771 (ref.
     'BGP4') (Obsoleted by RFC 4271)


     Summary: 3 errors (**), 0 flaws (~~), 12 warnings (==), 3 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------

1	Secure Inter-Domain Routing (sidr)                             Kent, S.
2	Internet Draft                                                 Kong, D.
3	Expires: July 2013                                              Seo, K.
4	Intended Status: BCP                                   BBN Technologies
5	                                                           January 2013

7	       Template for a Certification Practice Statement (CPS) for the
8	                            Resource PKI (RPKI)
9	                        draft-ietf-sidr-cps-01.txt

11	Status of this Memo

13	   This Internet-Draft is submitted to IETF in full conformance with
14	   the provisions of BCP 78 and BCP 79.

16	   This Internet-Draft is submitted in full conformance with the
17	   provisions of BCP 78 and BCP 79.

19	   Internet-Drafts are working documents of the Internet Engineering
20	   Task Force (IETF), its areas, and its working groups. Note that other
21	   groups may also distribute working documents as Internet-Drafts.

23	   Internet-Drafts are draft documents valid for a maximum of six months
24	   and may be updated, replaced, or obsoleted by other documents at any
25	   time.  It is inappropriate to use Internet-Drafts as reference
26	   material or to cite them other than as work in progress."

28	   The list of current Internet-Drafts can be accessed at
29	   http://www.ietf.org/1id-abstracts.html

31	   The list of Internet-Draft Shadow Directories can be accessed at
32	   http://www.ietf.org/shadow.html

34	   This Internet-Draft will expire on July 31, 2013.

36	   Abstract

38	   This document contains a template to be used for creating a
39	   Certification Practice Statement (CPS) for an Organization that is
40	   part of the Resource Public Key Infrastructure (RPKI), e.g., a
41	   resource allocation registry or an ISP.

43	Conventions used in this document

45	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
46	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
47	   document are to be interpreted as described in RFC-2119 [RFC2119].

49	Table of Contents

51	   Preface...........................................................7
52	   1. Introduction...................................................8
53	      1.1. Overview..................................................8
54	      1.2. Document Name and Identification..........................9
55	      1.3. PKI Participants..........................................9
56	         1.3.1. Certification Authorities............................9
57	         1.3.2. Registration Authorities.............................9
58	         1.3.3. Subscribers.........................................10
59	         1.3.4. Relying Parties.....................................10
60	         1.3.5. Other Participants..................................10
61	      1.4. Certificate Usage........................................10
62	         1.4.1. Appropriate Certificate Uses........................10
63	         1.4.2. Prohibited Certificate Uses.........................10
64	      1.5. Policy Administration....................................11
65	         1.5.1. Organization administering the document.............11
66	         1.5.2. Contact Person......................................11
67	         1.5.3. Person Determining CPS Suitability for the Policy...11
68	         1.5.4. CPS Approval Procedures.............................11
69	      1.6. Definitions and Acronyms.................................11
70	   2. Publication and Repository Responsibilities...................14
71	      2.1. Repositories.............................................14
72	      2.2. Publication of Certification Information.................14
73	      2.3. Time or Frequency of Publication.........................14
74	      2.4. Access Controls on Repositories..........................14
75	   3. Identification And Authentication.............................15
76	      3.1. Naming...................................................15
77	         3.1.1. Types of Names......................................15
78	         3.1.2. Need for Names to be Meaningful.....................15
79	         3.1.3. Anonymity or Pseudonymity of Subscribers............15
80	         3.1.4. Rules for Interpreting Various Name Forms...........15
81	         3.1.5. Uniqueness of Names.................................15
82	         3.1.6. Recognition, Authentication, and Role of Trademarks.16
83	      3.2. Initial Identity Validation..............................16
84	         3.2.1. Method to Prove Possession of Private Key...........16
85	         3.2.2. Authentication of Organization Identity.............16
86	         3.2.3. Authentication of Individual Identity...............16
87	         3.2.4. Non-verified Subscriber Information.................17
88	         3.2.5. Validation of Authority.............................17
89	         3.2.6. Criteria for Interoperation.........................17
90	      3.3. Identification and Authentication for Re-key Requests....17
91	         3.3.1. Identification and Authentication for Routine Re-key17
92	         3.3.2. Identification and Authentication for Re-key after
93	         Revocation.................................................18
94	      3.4. Identification and Authentication for Revocation Request.18
95	   4. Certificate Life-Cycle Operational Requirements...............19
96	      4.1. Certificate Application..................................19
97	         4.1.1. Who Can Submit a Certificate Application............19
98	         4.1.2. Enrollment Process and Responsibilities.............19
99	      4.2. Certificate Application Processing.......................19
100	         4.2.1. Performing Identification and Authentication Functions19
101	         4.2.2. Approval or Rejection of Certificate Applications...19
102	         4.2.3. Time to Process Certificate Applications............20
103	      4.3. Certificate Issuance.....................................20
104	         4.3.1. CA Actions During Certificate Issuance..............20
105	         4.3.2. Notification to Subscriber by the CA of Issuance of
106	         Certificate................................................20
107	         4.3.3. Notification of Certificate Issuance by the CA to Other
108	         Entities...................................................20
109	      4.4. Certificate Acceptance...................................20
110	         4.4.1. Conduct Constituting Certificate Acceptance.........20
111	         4.4.2. Publication of the Certificate by the CA............20
112	      4.5. Key Pair and Certificate Usage...........................20
113	         4.5.1. Subscriber Private Key and Certificate Usage........21
114	         4.5.2. Relying Party Public Key and Certificate Usage......21
115	      4.6. Certificate Renewal......................................21
116	         4.6.1. Circumstance for Certificate Renewal................21
117	         4.6.2. Who May Request Renewal.............................21
118	         4.6.3. Processing Certificate Renewal Requests.............22
119	         4.6.4. Notification of New Certificate Issuance to Subscriber22
120	         4.6.5. Conduct Constituting Acceptance of a Renewal Certificate
121	         ...........................................................22
122	         4.6.6. Publication of the Renewal Certificate by the CA....22
123	         4.6.7. Notification of Certificate Issuance by the CA to Other
124	         Entities...................................................22
125	      4.7. Certificate Re-key.......................................22
126	         4.7.1. Circumstance for Certificate Re-key.................22
127	         4.7.2. Who May Request Certification of a New Public Key...23
128	         4.7.3. Processing Certificate Re-keying Requests...........23
129	         4.7.4. Notification of New Certificate Issuance to Subscriber23
130	         4.7.5. Conduct Constituting Acceptance of a Re-keyed
131	         Certificate................................................23
132	         4.7.6. Publication of the Re-keyed Certificate by the CA...23
133	         4.7.7. Notification of Certificate Issuance by the CA to Other
134	         Entities...................................................24
135	      4.8. Certificate Modification.................................24
136	         4.8.1. Circumstance for Certificate Modification...........24
137	         4.8.2. Who May Request Certificate modification............24
138	         4.8.3. Processing Certificate Modification Requests........24
139	         4.8.4. Notification of Modified Certificate Issuance to
140	         Subscriber.................................................24
141	         4.8.5. Conduct Constituting Acceptance of Modified Certificate
142	         ...........................................................25
143	         4.8.6. Publication of the Modified Certificate by the CA...25
144	         4.8.7. Notification of Certificate Issuance by the CA to Other
145	         Entities...................................................25
146	      4.9. Certificate Revocation and Suspension....................25
147	         4.9.1. Circumstances for Revocation........................25
148	         4.9.2. Who Can Request Revocation..........................25
149	         4.9.3. Procedure for Revocation Request....................25
150	         4.9.4. Revocation Request Grace Period.....................26
151	         4.9.5. Time Within Which CA Must Process the Revocation Request
152	         ...........................................................26
153	         4.9.6. Revocation Checking Requirement for Relying Parties.26
154	         4.9.7. CRL Issuance Frequency..............................26
155	         4.9.8. Maximum Latency for CRLs............................26
156	      4.10. Certificate Status Services.............................26
157	   5. Facility, Management, and Operational Controls ................27
158	      5.1. Physical Controls........................................27
159	         5.1.1. Site location and construction......................27
160	         5.1.2. Physical access.....................................27
161	         5.1.3. Power and air conditioning..........................27
162	         5.1.4. Water exposures.....................................27
163	         5.1.5. Fire prevention and protection......................27
164	         5.1.6. Media storage.......................................27
165	         5.1.7. Waste disposal......................................27
166	         5.1.8. Off-site backup.....................................27
167	      5.2. Procedural Controls......................................27
168	         5.2.1. Trusted roles.......................................27
169	         5.2.2. Number of persons required per task.................27
170	         5.2.3. Identification and authentication for each role.....27
171	         5.2.4. Roles requiring separation of duties................27
172	      5.3. Personnel Controls.......................................27
173	         5.3.1. Qualifications, experience, and clearance requirements28
174	         5.3.2. Background check procedures.........................28
175	         5.3.3. Training requirements...............................28
176	         5.3.4. Retraining frequency and requirements...............28
177	         5.3.5. Job rotation frequency and sequence.................28
178	         5.3.6. Sanctions for unauthorized actions..................28
179	         5.3.7. Independent contractor requirements.................28
180	         5.3.8. Documentation supplied to personnel.................28
181	      5.4. Audit Logging Procedures.................................28
182	         5.4.1. Types of Events Recorded............................28
183	         5.4.2. Frequency of Processing Log.........................28
184	         5.4.3. Retention Period for Audit Log......................29
185	         5.4.4. Protection of Audit Log.............................29
186	         5.4.5. Audit Log Backup Procedures.........................29
187	         5.4.6. Audit Collection System (Internal vs. External)
188	         [OMITTED]..................................................29
189	         5.4.7. Notification to Event-causing Subject [OMITTED].....29
190	         5.4.8. Vulnerability Assessments...........................29
191	      5.5. Records archival [OMITTED]...............................29
192	      5.6. Key Changeover...........................................29
193	      5.7. Compromise and disaster recovery [OMITTED]...............29
194	      5.8. CA or RA Termination.....................................29
195	   6. Technical Security Controls...................................30
196	      6.1. Key Pair Generation and Installation.....................30
197	         6.1.1. Key Pair Generation.................................30
198	         6.1.2. Private Key Delivery to Subscriber..................30
199	         6.1.3. Public Key Delivery to Certificate Issuer...........30
200	         6.1.4. CA Public Key Delivery to Relying Parties...........30
201	         6.1.5. Key Sizes...........................................30
202	         6.1.6. Public Key Parameters Generation and Quality Checking31
203	         6.1.7. Key Usage Purposes (as per X.509 v3 Key Usage Field)31
204	      6.2. Private Key Protection and Cryptographic Module Engineering
205	      Controls......................................................31
206	         6.2.1. Cryptographic module standards and controls.........31
207	         6.2.2. Private Key (n out of m) Multi-Person Control.......31
208	         6.2.3. Private Key Escrow..................................31
209	         6.2.4. Private Key Backup..................................31
210	         6.2.5. Private Key Archival................................32
211	         6.2.6. Private Key Transfer into or from a Cryptographic Module
212	         ...........................................................32
213	         6.2.7. Private Key Storage on Cryptographic Module.........32
214	         6.2.8. Method of Activating Private Key....................32
215	         6.2.9. Method of Deactivating Private Key..................32
216	         6.2.10. Method of Destroying Private Key...................32
217	         6.2.11. Cryptographic Module Rating........................32
218	      6.3. Other aspects of Key Pair Management.....................32
219	         6.3.1. Public Key Archival.................................32
220	         6.3.2. Certificate Operational Periods and Key Pair Usage
221	         Periods....................................................33
222	      6.4. Activation data..........................................33
223	         6.4.1. Activation Data Generation and Installation.........33
224	         6.4.2. Activation data protection..........................33
225	         6.4.3. Other Aspects of Activation Data....................33
226	      6.5. Computer Security Controls...............................33
227	      6.6. Life cycle Technical Controls............................33
228	         6.6.1. System Development Controls.........................33
229	         6.6.2. Security Management Controls........................33
230	         6.6.3. Life Cycle Security Controls........................34
231	      6.7. Network Security Controls................................34
232	      6.8. Time-stamping............................................34
233	   7. Certificate and CRL Profiles..................................35
234	   8. Compliance Audit and Other Assessments........................36
235	   9. Other Business And Legal Matters..............................37
236	      9.1. Fees.....................................................38
237	         9.1.1. Certificate issuance or renewal fees................38
238	         9.1.2. Fees for other services (if applicable).............38
239	         9.1.3. Refund policy.......................................38
240	      9.2. Financial responsibility.................................38
241	         9.2.1. Insurance coverage..................................38
242	         9.2.2. Other assets........................................38
243	         9.2.3. Insurance or warranty coverage for end-entities.....38
244	      9.3. Confidentiality of business information..................38
245	         9.3.1. Scope of confidential information...................38
246	         9.3.2. Information not within the scope of confidential
247	         information................................................38
248	         9.3.3. Responsibility to protect confidential information..38
249	      9.4. Privacy of personal information..........................38
250	         9.4.1. Privacy plan........................................38
251	         9.4.2. Information treated as private......................38
252	         9.4.3. Information not deemed private......................38
253	         9.4.4. Responsibility to protect private information.......38
254	         9.4.5. Notice and consent to use private information.......38
255	         9.4.6. Disclosure pursuant to judicial or administrative
256	         process....................................................38
257	         9.4.7. Other information disclosure circumstances..........38
258	      9.5. Intellectual property rights (if applicable).............38
259	      9.6. Representations and warranties...........................38
260	         9.6.1. CA representations and warranties...................38
261	         9.6.2. Subscriber representations and warranties...........39
262	         9.6.3. Relying party representations and warranties........39
263	      9.7. Disclaimers of warranties................................39
264	      9.8. Limitations of liability.................................39
265	      9.9. Indemnities..............................................39
266	      9.10. Term and termination....................................39
267	         9.10.1. Term...............................................39
268	         9.10.2. Termination........................................39
269	         9.10.3. Effect of termination and survival.................39
270	      9.11. Individual notices and communications with participants.39
271	      9.12. Amendments..............................................39
272	         9.12.1. Procedure for amendment............................39
273	         9.12.2. Notification mechanism and period..................39
274	      9.13. Dispute resolution provisions...........................39
275	      9.14. Governing law...........................................39
276	      9.15. Compliance with applicable law..........................39
277	      9.16. Miscellaneous provisions................................39
278	         9.16.1. Entire agreement...................................39
279	         9.16.2. Assignment.........................................39
280	         9.16.3. Severability.......................................39
281	         9.16.4. Enforcement (attorneys' fees and waiver of rights).39
282	         9.16.5. Force Majeure......................................39
283	   10. Security Considerations......................................39
284	   11. IANA Considerations..........................................40
285	   12. Acknowledgments..............................................40
286	   13. References...................................................41
287	      13.1. Normative References....................................41
288	      13.2. Informative References..................................41
289	   Author's Addresses...............................................42
290	   Copyright Statement..............................................42

292	Preface

294	   This document contains a template to be used for creating a
295	   Certification Practice Statement (CPS) for an Organization that is
296	   part of the Resource Public Key Infrastructure (RPKI).  The user of
297	   this document should:

299	     1. substitute a title page for page 1 saying, e.g., ''<Name of
300	        Organization> Certification Practice Statement for the Resource
301	        Public Key Infrastructure (RPKI)'' with date, author, etc. There
302	        is no expectation that a CPS will be published as an RFC.

304	     2. leave the table of contents intact

306	     3. delete this Preface, headers and footers (but keep page numbers)

308	     4. fill in the information indicated below by <text in angle
309	        brackets>

311	     5. delete sections 10, 11, 12, 13.1, Acknowledgments, Author's
312	        Addresses, Intellectual Property Statement, Disclaimer of
313	        Validity, Copyright Statement, Acknowledgments; leaving a
314	        reference section with just the references in 13.2

316	     6. update the table of contents to reflect the changes required by
317	        steps 4 and 5 above .

319	   This document has been generated to complement the Certificate Policy
320	   (CP) for the RPKI [RFC6484]. Like the RPKI CP, it is is based on the
321	   template specified in RFC 3647. A number of sections contained in the
322	   template were omitted from this CPS because they did not apply to
323	   this PKI. However, we have retained the section numbering scheme
324	   employed in the RFC to facilitate comparison with the section
325	   numbering scheme employed in that RFC and in the RPKI CP.

327	1. Introduction

329	   This document is the Certification Practice Statement (CPS) of <Name
330	   of Organization>.  It describes the practices employed by the <Name
331	   of Organization> Certification Authority (CA) in the Resource Public
332	   Key Infrastructure (RPKI).   These practices are defined in
333	   accordance with the requirements of the Certificate Policy (CP,
334	   [RFC6484]) for the RPKI.

336	   The RPKI is designed to support validation of claims by current
337	   holders of Internet Number Resources (INRs, see definition in Section
338	   1.7) in accordance with the records of the organizations that act as
339	   CAs in this PKI. The ability to verify such claims is essential to
340	   ensuring the unique, unambiguous distribution of these resources

342	   This PKI parallels the existing INR distribution hierarchy. These
343	   resources are distributed by the Internet Assigned Numbers Authority
344	   (IANA) to the Regional Internet Registries. In some regions, National
345	   Internet Registries (NIRs) form a tier of the hierarchy below the
346	   RIRs for internet number resource (INR) distribution. Internet
347	   Service Providers (ISPs) and network subscribers form additional
348	   tiers below registries.

350	1.1. Overview

352	   This CPS describes:

354	   .  Participants

356	   .  Publication of the certificates and CRLs

358	   .  How certificates are issued, managed, and revoked

360	   .  Facility management (physical security, personnel, audit, etc.)

362	   .  Key management

364	   .  Audit procedures

366	   .  Business and legal issues

368	   This PKI encompasses several types of certificates (see [RFC6480] for
369	   more details):

371	  . CA certificates for each organization distributing INRs and for
372	     each subscriber INR holder)

374	  . End entity (EE) certificates for organizations to use to validate
375	     digital signatures on RPKI-signed objects (see definition in
376	     Section 1.7).

378	  . In the future, the PKI also may include end entity certificates in
379	     support of access control for the repository system as described in
380	     2.4.

382	1.2. Document Name and Identification

384	   The name of this document is ''<Name of Organization>'s Certification
385	   Practice Statement for the Resource Public Key Infrastructure
386	   (RPKI)''.

388	1.3. PKI Participants

390	   Note that in a PKI, the term ''subscriber'' refers to an individual or
391	   organization that is a subject of a certificate issued by a CA. The
392	   term is used in this fashion throughout this document, without
393	   qualification, and should not be confused with the networking use of
394	   the term to refer to an individual or organization that receives
395	   service from an ISP. In such cases the term ''network subscriber'' will
396	   be used. Also note that, for brevity, this document always refers to
397	   PKI participants as organizations or entities, even though some of
398	   them are individuals.

400	       1.3.1. Certification Authorities

402	   <Describe the CAs that you will operate for the RPKI.  One approach
403	   is to operate two CAs: one designated ''offline'' and the other
404	   designated ''production.'' The offline CA is the top level CA for the
405	   <Name of Organization> portion of the RPKI. It provides a secure
406	   revocation and recovery capability in case the production CA is
407	   compromised or becomes unavailable. Thus the offline CA issues
408	   certificates only to instances of the production CA; and the CRLs it
409	   issues are used to revoke only certificates issued to the production
410	   CA. The production CA is used to issue RPKI certificates to <Name of
411	   Organization> members, to whom INRs have been distributed.>

413	       1.3.2. Registration Authorities

415	   <Describe how the registration authority function is handled for the
416	   CA(s) that you operate.  The RPKI does not require establishment or
417	   use of a separate registration authority (RA) in conjunction with the
418	   CA function. The RA function MUST be provided by the same entity
419	   operating as a CA, e.g., entities listed in Section 1.3.1. An entity
420	   acting as a CA in this PKI already has a formal relationship with
421	   each organization to which it distributes INRs. These organizations
422	   already perform the RA function implicitly since they already assume
423	   responsibility for distributing INRs.>

425	       1.3.3. Subscribers

427	   Organizations receiving INR allocations from this CA are subscribers
428	   in the RPKI.

430	       1.3.4. Relying Parties

432	   Entities or individuals that act in reliance on certificates or RPKI-
433	   signed objects issued under this PKI are relying parties. Relying
434	   parties may or may not be subscribers within this PKI. (See Section
435	   1.7 for the definition of an RPKI-signed object.)

437	       1.3.5. Other Participants

439	   <Specify the entity that operates a repository holding certificates,
440	   CRLs, and other RPKI-signed objects issued by this Organization, and
441	   provide a URL for the repository.>

443	1.4. Certificate Usage

445	       1.4.1. Appropriate Certificate Uses

447	   The certificates issued under this hierarchy are for authorization in
448	   support of validation of claims of current holdings of INRs.

450	   Additional uses of the certificates, consistent with the basic goal
451	   cited above, are also permitted under the RPKI CP [RFC6484].

453	   Some of the certificates that may be issued under this PKI could be
454	   used to support operation of this infrastructure, e.g., access
455	   control for the repository system as described in 2.4. Such uses also
456	   are permitted under the RPKI certificate policy.

458	       1.4.2. Prohibited Certificate Uses

460	   Any uses other than those described in Section 1.4.1 are prohibited.

462	1.5. Policy Administration

464	       1.5.1. Organization administering the document

466	   This CPS is administered by <Name of Organization>

468	       1.5.2. Contact Person

470	   <Insert Organization contact info here>

472	       1.5.3. Person Determining CPS Suitability for the Policy

474	   Not applicable.  Each organization issuing a certificate in this PKI
475	   is attesting to the distribution of INRs to the holder of the private
476	   key corresponding to the public key in the certificate. The issuing
477	   organizations are the same organizations as the ones that perform the
478	   distribution hence they are authoritative with respect to the
479	   accuracy of this binding.

481	       1.5.4. CPS Approval Procedures

483	   Not applicable. Each organization issuing a certificate in this PKI
484	   is attesting to the distribution of INRs to the holder of the private
485	   key corresponding to the public key in the certificate. The issuing
486	   organizations are the same organizations as the ones that perform the
487	   distribution, hence they are authoritative with respect to the
488	   accuracy of this binding.

490	1.6. Definitions and Acronyms

492	BPKI - Business PKI: A BPKI is an optional additional PKI used by an
493	       Organization to identify members to whom RPKI certificates can
494	       be issued.

496	CP -   Certificate Policy. A CP is a named set of rules that indicates
497	       the applicability of a certificate to a particular community
498	       and/or class of applications with common security requirements.
499	       The CP for the RPKI is [RFC6384].

501	CPS -  Certification Practice Statement. A CPS is a document that
502	       specifies the practices that a Certification Authority employs
503	       in issuing certificates.

505	Distribution of INRs -                          - A process of distribution of the INRs along the
506	       respective number hierarchy. IANA distributes blocks of IP
507	       addresses and Autonomous System Numbers to the five Regional
508	       Internet Registries (RIRs). RIRs distribute smaller address
509	       blocks and Autonomous System Numbers to organizations within
510	       their service regions, who in turn distribute IP addresses to
511	       their customers.

513	IANA - Internet Assigned Numbers Authority. IANA is responsible for
514	       global coordination of the Internet Protocol addressing systems
515	       and Autonomous System (AS) numbers used for routing internet
516	       traffic. IANA distributes INRs to Regional Internet Registries
517	       (RIRs).

519	INRs - Internet Number Resources. INRs are number values for three
520	       protocol parameter sets, namely:
521	          . IP Version 4 addresses,

523	          . IP version 6 addresses, and

525	          . Identifiers used in Internet inter-domain routing, currently
526	            Border Gateway Protocol-4 Autonomous System numbers.

528	ISP -         -  Internet Service Provider. An ISP is an organization managing
529	       and selling Internet services to other organizations.

531	NIR -         -  National Internet Registry. An NIR is an organization that
532	       manages the distribution of INRs for a portion of the
533	       geopolitical area covered by a Regional Registry. NIRs form an
534	       optional second tier in the tree scheme used to manage INR
535	       distribution.

537	RIR -   Regional Internet Registry.  An RIR is an organization that
538	       manages the distribution of INRs for a geopolitical area.

540	RPKI-signed object -                        - An RPKI-signed object is a digitally signed data
541	       object (other than a certificate or CRL) declared to be such by
542	       a standards track RFC, and that can be validated using
543	       certificates issued under this PKI. The content and format of
544	       these data constructs depend on the context in which validation
545	       of claims of current holdings of INRs takes place. Examples of
546	       these objects are repository manifests [RFC6486] and Route
547	       Origin Authorizations (ROAs) [RFC6482].

549	2. Publication and Repository Responsibilities

551	2.1. Repositories

553	   As per the CP, certificates, CRLs and RPKI-signed objects must be
554	   made available for downloading by all relying parties, to enable them
555	   to validate this data.

557	   The <Name of Organization> RPKI CA will publish certificates, CRLs,
558	   and RPKI-signed objects via a repository that is accessible via RSYNC
559	   at <insert URL here>. This repository will conform to the structure
560	   described in [RFC6481].

562	2.2. Publication of Certification Information

564	   <Name of Organization> will publish certificates, CRLs and RPKI-
565	   signed objects issued by it to a repository that operates as part of
566	   a world-wide distributed system of RPKI repositories..

568	2.3. Time or Frequency of Publication

570	   <Describe here your procedures for publication (to the global
571	   repository system) of the certificates, CRLs and RPKI-signed objects
572	   that you issue. If you choose to outsource publication of PKI data,
573	   you still need to provide this information for relying parties. This
574	   should include the period of time within which a certificate will be
575	   published after the CA issues the certificate, and the period of time
576	   within which a CA will publish a CRL with an entry for a revoked
577	   certificate, after the CA revokes that certificate.>

579	   The <Name of Organization> CA will publish its CRL prior to the
580	   nextScheduledUpdate value in the scheduled CRL previously issued by
581	   the CA.

583	2.4. Access Controls on Repositories

585	   <Describe the access controls used by the Organization to ensure that
586	   only authorized parties can modify repository data, and any controls
587	   used to mitigate denial of service attacks against the repository. If
588	   the Organization offers repository services to its subscribers, then
589	   describe here the protocol(s) that it supports for publishing signed
590	   objects from subscribers.>

592	3. Identification And Authentication

594	3.1. Naming

596	       3.1.1. Types of Names

598	   The subject of each certificate issued by this Organization is
599	   identified by an X.500 Distinguished Name (DN). The distinguished
600	   name will consist of a single Common Name (CN) attribute with a
601	   value generated by <Name of Organization>. Optionally, the
602	   serialNumber attribute may be included along with the common name
603	   (to form a terminal relative distinguished name set), to distinguish
604	   among successive instances of certificates associated with the same
605	   entity.

607	       3.1.2. Need for Names to be Meaningful

609	   The subject name in each subscriber certificate will be unique
610	   relative to all certificates issued by <Name of Organization>.
611	   However, there is no guarantee that the subject name will be globally
612	   unique in this PKI. Also, the name of the subscriber will not be
613	   ''meaningful'' in the conventional, human-readable sense. The rationale
614	   here is that these certificates are used for authorization in support
615	   of applications that make use of attestations of INR holdings.  They
616	   are not used to identify subjects.

618	       3.1.3. Anonymity or Pseudonymity of Subscribers

620	   Although Subject names in certificates issued by this Organization
621	   need not be meaningful, and may appear ''random,'' anonymity is not a
622	   function of this PKI; thus no explicit support for this feature is
623	   provided.

625	       3.1.4. Rules for Interpreting Various Name Forms

627	   None

629	       3.1.5. Uniqueness of Names

631	   <Name of Organization> certifies subject names that are unique among
632	   the certificates that it issues. Although it is desirable that these
633	   subject names be unique throughout the PKI, to facilitate certificate
634	   path discovery, such uniqueness is neither mandated nor enforced
635	   through technical means. <Name of Organization> generates subject
636	   names to minimize the chances that two entities in the RPKI will be
637	   assigned the same name. Specifically, <insert subject name generation
638	   description here, or cite RFC 6487.>

640	       3.1.6. Recognition, Authentication, and Role of Trademarks

642	   Because the Subject names are not intended to be meaningful, <Name of
643	   Organization> makes no provision to either recognize or authenticate
644	   trademarks, service marks, etc.

646	3.2. Initial Identity Validation

648	       3.2.1. Method to Prove Possession of Private Key

650	   <Describe the method whereby each subscriber will be required to
651	   demonstrate proof-of-possession (PoP) of the private key
652	   corresponding to the public key in the certificate, prior to
653	   certificate issuance.>

655	       3.2.2. Authentication of Organization Identity

657	   Certificates issued under this PKI do not attest to the
658	   organizational identity of subscribers. However, certificates are
659	   issued to subscribers in a fashion that preserves the accuracy of
660	   distributions of INRs as represented in <Name of Organization's>
661	   records.

663	   <Describe the procedures that will be used to ensure that each RPKI
664	   certificate that is issued, accurately reflects your records with
665	   regard to the organization to which you have distributed (or sub-
666	   distributed) the INRs identified in the certificate. For example, a
667	   BPKI certificate could be used to authenticate a certificate request
668	   that serves as a link to the <Name of Organization's> subscriber
669	   database that maintains the INR distribution records. The certificate
670	   request could be matched against the database record for the
671	   subscriber in question, and an RPKI certificate would be issued only
672	   if the INRs requested were a subset of those held by the subscriber.
673	   The specific procedures employed for this purpose should be
674	   commensurate with any you already employ in the maintenance of INR
675	   distribution.>

677	       3.2.3. Authentication of Individual Identity

679	   Certificates issued under this PKI do not attest to the individual
680	   identity of a subscriber. However, <Name of Organization> maintains
681	   contact information for each subscriber in support of certificate
682	   renewal, re-key, and revocation.

684	   <Describe the procedures that are used to identify at least one
685	   individual as a representative of each subscriber. This is done in
686	   support of issuance, renewal, and revocation of the certificate
687	   issued to the organization. For example, one might say ''The <Name of
688	   Organization> BPKI (see Section 3.2.6) issues certificates that MUST
689	   be used to identify individuals who represent <Name of Organization>
690	   subscribers.'' The procedures should be commensurate with those you
691	   already employ in authenticating individuals as representatives for
692	   INR holders. Note that this authentication is solely for use by you
693	   in dealing with the organizations to which you distribute (or sub-
694	   distribute) INRs, and thus must not be relied upon outside of this
695	   CA/subscriber relationship.>

697	       3.2.4. Non-verified Subscriber Information

699	   No non-verified subscriber data is included in certificates issued
700	   under this certificate policy except for Subject Information Access
701	   (SIA) extensions [RFC6487].

703	       3.2.5. Validation of Authority

705	   <Describe the procedures used to verify that an individual claiming
706	   to represent a subscriber, is authorized to represent that subscriber
707	   in this context. For example, one could say, ''Only an individual to
708	   whom a BPKI certificate (see Section 3.2.6) has been issued may
709	   request issuance of an RPKI certificate. Each certificate issuance
710	   request is verified using the BPKI.'' The procedures should be
711	   commensurate with those you already employ in authenticating
712	   individuals as representatives of subscribers.>

714	       3.2.6. Criteria for Interoperation

716	   The RPKI is neither intended nor designed to interoperate with any
717	   other PKI. <If you operate a separate, additional PKI for business
718	   purposes, e g., a BPKI, then describe (or reference) how the BPKI is
719	   used to authenticate subscribers and to enable them to manage their
720	   resource distributions.>

722	3.3. Identification and Authentication for Re-key Requests

724	       3.3.1. Identification and Authentication for Routine Re-key

726	   <Describe the conditions under which routine re-key is required and
727	   the manner by which it is requested. Describe the procedures that are
728	   used to ensure that a subscriber requesting routine re-key is the
729	   legitimate holder of the certificate to be re-keyed. State the
730	   approach for establishing PoP of the private key corresponding to the
731	   new public key. If you operate a BPKI, describe how that BPKI is used
732	   to authenticate routine re-key requests.>

734	       3.3.2. Identification and Authentication for Re-key after
735	          Revocation

737	   <Describe the procedures used to ensure that an organization
738	   requesting a re-key after revocation is the legitimate holder of the
739	   INRs in the certificate being re-keyed. This should also include the
740	   method employed for verifying PoP of the private key corresponding to
741	   the new public key. If you operate a BPKI, describe how that BPKI is
742	   used to authenticate re-key requests. With respect to authentication
743	   of the subscriber, the procedures should be commensurate with those
744	   you already employ in the maintenance of INR distribution records.>

746	3.4. Identification and Authentication for Revocation Request

748	   <Describe the procedures used by an RPKI subscriber to make a
749	   revocation request.  Describe the manner by which it is ensured that
750	   the subscriber requesting revocation is the subject of the
751	   certificate (or an authorized representative thereof) to be revoked.
752	   Note that there may be different procedures for the case where the
753	   legitimate subject still possesses the original private key as
754	   opposed to the case when it no longer has access to that key. These
755	   procedures should be commensurate with those you already employ in
756	   the maintenance of subscriber records.>

758	4. Certificate Life-Cycle Operational Requirements

760	4.1. Certificate Application

762	       4.1.1. Who Can Submit a Certificate Application

764	   Any subscriber who holds INRs distributed by this Organization may
765	   submit a certificate application to this CA.

767	       4.1.2. Enrollment Process and Responsibilities

769	   <Describe your enrollment process for issuing certificates both for
770	   initial deployment of the PKI and as an ongoing process. Note that
771	   most of the certificates in this PKI are issued as part of your
772	   normal business practices, as an adjunct to INR distribution, and
773	   thus a separate application to request a certificate may not be
774	   necessary.  If so, reference should be made to where these practices
775	   are documented.>

777	4.2. Certificate Application Processing

779	   <Describe the certificate request/response processing that you will
780	   employ.  You should make use of existing standards for certificate
781	   application processing (see [RFC6487]).>

783	       4.2.1. Performing Identification and Authentication Functions

785	   <Describe your practices for identification and authentication of
786	   certificate applicants.  Often, existing practices employed by you to
787	   identify and authenticate organizations can be used as the basis for
788	   issuance of certificates to these subscribers.  Reference can be made
789	   to documentation of such existing practices.>

791	       4.2.2. Approval or Rejection of Certificate Applications

793	   <Describe your practices for approval or rejection of applications
794	   and refer to documentation of existing business practices relevant to
795	   this process.  Note that according to the CP, certificate
796	   applications will be approved based on the normal business practices
797	   of the entity operating the CA, based on the CA's records of
798	   subscribers. The CP also says that each CA will follow the procedures
799	   specified in 3.2.1 to verify that the requester holds the private key
800	   corresponding to the public key that will be bound to the certificate
801	   the CA issues to the requester.>
802	       4.2.3. Time to Process Certificate Applications

804	   <Specify here your expected time frame for processing certificate
805	   applications.>

807	4.3. Certificate Issuance

809	       4.3.1. CA Actions During Certificate Issuance

811	   <Describe your procedures for issuance and publication of a
812	   certificate.>

814	       4.3.2. Notification to Subscriber by the CA of Issuance of
815	          Certificate

817	   <Name of Organization> will notify the subscriber when the
818	   certificate is published. <Describe here your procedures for
819	   notifying a subscriber when a certificate has been published.>

821	       4.3.3. Notification of Certificate Issuance by the CA to Other
822	          Entities

824	   <Describe here any other entities that will be notified when a
825	   certificate is published.>

827	4.4. Certificate Acceptance

829	       4.4.1. Conduct Constituting Certificate Acceptance

831	   When a certificate is issued, the <name of Organization> CA will
832	   publish it to the repository and notify the subscriber.  <This may be
833	   done without subscriber review and acceptance. State your policy with
834	   respect to subscriber certificate acceptance here.>

836	       4.4.2. Publication of the Certificate by the CA

838	   Certificates will be published at <insert repository URl here> once
839	   issued, following the conduct described in 4.4.1. This will be done
840	   within <specify the timeframe within which the certificate will be
841	   placed in the repository and the subscriber will be
842	   notified>.<Describe any additional procedures with respect to
843	   publication of the certificate here.>

845	4.5. Key Pair and Certificate Usage

847	   A summary of the use model for the RPKI is provided below.

849	       4.5.1. Subscriber Private Key and Certificate Usage

851	   The certificates issued by <Name of Organization> to subordinate INR
852	   holders are CA certificates. The private key associated with each of
853	   these certificates is used to sign subordinate (CA or EE)
854	   certificates and CRLs.

856	       4.5.2. Relying Party Public Key and Certificate Usage

858	   The primary relying parties in this PKI are organizations that use
859	   RPKI EE certificates to verify RPKI-signed objects. Relying parties
860	   are referred to Section 4.5.2 of [RFC6484] for additional guidance
861	   with respect to acts of reliance on RPKI certificates.

863	4.6. Certificate Renewal

865	       4.6.1. Circumstance for Certificate Renewal

867	   As per the RPKI CP, a certificate will be processed for renewal based
868	   on its expiration date or a renewal request from the certificate
869	   subject. The request may be implicit, a side effect of renewing a
870	   resource holding agreement, or may be explicit. If <Name of
871	   Organization> initiates the renewal process based on the certificate
872	   expiration date, then <Name of Organization> will notify the
873	   subscriber <insert the period of advance warning, e.g., ''2 weeks in
874	   advance of the expiration date'', or the general policy, e.g., ''in
875	   conjunction with notification of service expiration''.>  The validity
876	   interval of the new (renewed) certificate will overlap that of the
877	   previous certificate by <insert length of overlap period, e.g., 1
878	   week>, to ensure uninterrupted coverage.

880	   Certificate renewal will incorporate the same public key as the
881	   previous certificate, unless the private key has been reported as
882	   compromised.  If a new key pair is being used, the stipulations of
883	   Section 4.7 will apply.

885	       4.6.2. Who May Request Renewal

887	   The subscriber or <Name of Organization> may initiate the renewal
888	   process. <For the case of the subscriber, describe the procedures
889	   that will be used to ensure that the requester is the legitimate
890	   holder of the INRs in the certificate being renewed. This should also
891	   include the method employed for verifying PoP of the private key
892	   corresponding to the public key in the certificate being renewed or
893	   the new public key if the public key is being changed.  With respect
894	   to authentication of the subscriber, the procedures should be
895	   commensurate with those you already employ in the maintenance of INR
896	   distribution records. If you operate a BPKI for this, describe how
897	   that business-based PKI is used to authenticate renewal requests and
898	   refer to 3.2.6.>

900	       4.6.3. Processing Certificate Renewal Requests

902	  <Describe your procedures for handling certificate renewal requests.
903	  Describe how you verify that the requester is the subscriber or is
904	  authorized by the subscriber, and that the certificate in question
905	  has not been revoked.>
906	       4.6.4. Notification of New Certificate Issuance to Subscriber

908	   <Name of Organization> will notify the subscriber when the
909	   certificate is published. <Describe your procedure for notification
910	   of new certificate issuance to the subscriber. This should be
911	   consistent with 4.3.2.>

913	       4.6.5. Conduct Constituting Acceptance of a Renewal Certificate

915	   See Section 4.4.1 <If you employ a different policy from that
916	   specified in Section 4.4.1, describe it here.>

918	       4.6.6. Publication of the Renewal Certificate by the CA

920	   See Section 4.4.2.

922	       4.6.7. Notification of Certificate Issuance by the CA to Other
923	          Entities

925	   See Section 4.4.3.

927	4.7. Certificate Re-key

929	       4.7.1. Circumstance for Certificate Re-key

931	   As per the RPKI CP, re-key of a certificate will be performed only
932	   when required, based on:

934	   1. knowledge or suspicion of compromise or loss of the associated
935	      private key, or

937	   2. the expiration of the cryptographic lifetime of the associated key
938	      pair

940	   If a certificate is revoked to replace the RFC 3779 extensions, the
941	   replacement certificate will incorporate the same public key, not a
942	   new key, unless the subscriber requests a re-key at the same time.

944	   If the re-key is based on a suspected compromise, then the previous
945	   certificate will be revoked.

947	   Section 5.6 of the Certificate Policy notes that when a CA signs a
948	   certificate, the signing key should have a validity period that
949	   exceeds the validity period of the certificate.  This places
950	   additional constraints on when a subscriber should request a re-key.

952	       4.7.2. Who May Request Certification of a New Public Key

954	   Only the holder or a certificate may request a re-key. In addition,
955	   <Name of Organization> may initiate a re-key based on a verified
956	   compromise report. <If the subscriber (certificate Subject) requests
957	   the rekey, describe how authentication is effected, e.g., using the
958	   <Name of Registry> BPKI. Describe how a compromise report received
959	   from other than a subscriber is verified.>

961	       4.7.3. Processing Certificate Re-keying Requests

963	   <Describe your process for handling re-keying requests.  As per the
964	   RPKI CP, this should be consistent with the process described in
965	   Section 4.3.  So reference can be made to that section.>

967	       4.7.4. Notification of New Certificate Issuance to Subscriber

969	   <Describe your policy regarding notifying the subscriber re:
970	   availability of the new re-keyed certificate.  This should be
971	   consistent with the notification process for any new certificate
972	   issuance (see Section 4.3.2).>

974	       4.7.5. Conduct Constituting Acceptance of a Re-keyed Certificate

976	   When a re-keyed certificate is issued, the CA will publish it in the
977	   repository and notify the subscriber.  See Section 4.4.1.

979	       4.7.6. Publication of the Re-keyed Certificate by the CA

981	   <Describe your policy regarding publication of the new certificate.
982	   This should be consistent with the publication process for any new
983	   certificate (see Section 4.4.2).>
984	       4.7.7. Notification of Certificate Issuance by the CA to Other
985	          Entities

987	   See Section 4.4.3.

989	4.8. Certificate Modification

991	       4.8.1. Circumstance for Certificate Modification

993	   As per the RPKI CP, modification of a certificate occurs to implement
994	   changes to the RFC 3779 extension values or the SIA extension in a
995	   certificate.  A subscriber can request a certificate modification
996	   when this information in a currently valid certificate has changed,
997	   as a result of changes in the INR holdings of the subscriber or a
998	   change of the repository publication point data.

1000	   If a subscriber is to receive a distribution of INRs in addition to a
1001	   current distribution, and if the subscriber does not request that a
1002	   new certificate be issued containing only these additional INRs, then
1003	   this is accomplished through a certificate modification. When a
1004	   certificate modification is approved, a new certificate is issued.
1005	   The new certificate will contain the same public key and the same
1006	   expiration date as the original certificate, but with the incidental
1007	   information corrected and/or the INR distribution expanded. When
1008	   previously distributed INRs are to be removed from a certificate,
1009	   then the old certificate will be revoked and a new certificate
1010	   (reflecting the new distribution) issued.

1012	       4.8.2. Who May Request Certificate modification

1014	   The subscriber or <Name of Organization> may initiate the certificate
1015	   modification process. <For the case of the subscriber, state here
1016	   what steps will be taken to verify the identity and authorization of
1017	   the entity requesting the modification.>

1019	       4.8.3. Processing Certificate Modification Requests

1021	   <Describe your procedures for verification of the modification
1022	   request and procedures for the issuance of a new certificate.  These
1023	   should be consistent with the processes described in Sections 4.2 and
1024	   4.3.1.>

1026	       4.8.4. Notification of Modified Certificate Issuance to
1027	          Subscriber

1029	   <Describe your procedure for notifying the subscriber about the
1030	   issuance of a modified certificate.  This should be consistent with
1031	   the notification process for any new certificate (see Section
1032	   4.3.2).>

1034	       4.8.5. Conduct Constituting Acceptance of Modified Certificate

1036	   When a modified certificate is issued, <Name of Organization> will
1037	   publish it to the repository and notify the subscriber.  See Section
1038	   4.4.1.

1040	       4.8.6. Publication of the Modified Certificate by the CA

1042	   <Describe your procedure for publication of a modified certificate.
1043	   This should be consistent with the publication process for any new
1044	   certificate (see Section 4.4.2).>

1046	       4.8.7. Notification of Certificate Issuance by the CA to Other
1047	          Entities

1049	   See Section 4.4.3.

1051	4.9. Certificate Revocation and Suspension

1053	       4.9.1. Circumstances for Revocation

1055	   As per the RPKI CP, certificates can be revoked for several reasons.
1056	   Either <Name of Organization> or the subject may choose to end the
1057	   relationship expressed in the certificate, thus creating cause to
1058	   revoke the certificate. If one or more of the INRs bound to the
1059	   public key in the certificate are no longer associated with the
1060	   subject, that too constitutes a basis for revocation. A certificate
1061	   also may be revoked due to loss or compromise of the private key
1062	   corresponding to the public key in the certificate.  Finally, a
1063	   certificate may be revoked in order to invalidate data signed by the
1064	   private key associated with that certificate.

1066	       4.9.2. Who Can Request Revocation

1068	   The subscriber or <Name of Organization> may request a revocation.
1069	   <For the case of the subscriber, describe what steps will be taken to
1070	   verify the identity and authorization of the entity requesting the
1071	   revocation.>

1073	       4.9.3. Procedure for Revocation Request

1075	   <Describe your process for handling a certificate revocation request.
1076	   This should include:

1078	   o  Procedure to be used by the subscriber to request a revocation

1080	   o  Procedure for notification of the subscriber when the revocation
1081	      is initiated by <Name of Organization>.>

1083	       4.9.4. Revocation Request Grace Period

1085	   A subscriber is required request revocation as soon as possible after
1086	   the need for revocation has been identified.

1088	       4.9.5. Time Within Which CA Must Process the Revocation Request

1090	   <Describe your policy on the time period within which you will
1091	   process a revocation request.>

1093	       4.9.6. Revocation Checking Requirement for Relying Parties

1095	   As per the RPKI CP, a relying party is responsible for acquiring and
1096	   checking the most recent, scheduled CRL from the issuer of the
1097	   certificate, whenever the relying party validates a certificate.

1099	       4.9.7. CRL Issuance Frequency

1101	   <State the CRL issuance frequency for the CRLs that you publish.>
1102	   Each CRL contains a nextScheduledUpdate value and a new CRL will be
1103	   published at or before that time. <Name of Organization> will set the
1104	   nextScheduledUpdate value when it issues a CRL, to signal when the
1105	   next scheduled CRL will be issued.

1107	       4.9.8. Maximum Latency for CRLs

1109	   A CRL will be published to the repository system within <state the
1110	   maximum latency> after generation.

1112	4.10. Certificate Status Services

1114	   <Name of Organization> does not support OCSP or SCVP. <Name of
1115	   Organization> issues CRLs.

1117	5. Facility, Management, and Operational Controls

1119	5.1. Physical Controls

1121	   <As per the RPKI CP, describe the physical controls that you employ
1122	   for certificate management. These should be commensurate to those
1123	   used in the management of INR distribution.>

1125	       5.1.1. Site location and construction

1127	       5.1.2. Physical access

1129	       5.1.3. Power and air conditioning

1131	       5.1.4. Water exposures

1133	       5.1.5. Fire prevention and protection

1135	       5.1.6. Media storage

1137	       5.1.7. Waste disposal

1139	       5.1.8. Off-site backup

1141	5.2. Procedural Controls

1143	   <As per the RPKI CP, describe the procedural security controls that
1144	   you employ for certificate management.  These should be commensurate
1145	   to those used in the management of INR distribution.>

1147	       5.2.1. Trusted roles

1149	       5.2.2. Number of persons required per task

1151	       5.2.3. Identification and authentication for each role

1153	       5.2.4. Roles requiring separation of duties

1155	5.3. Personnel Controls

1157	   <As per the RPKI CP, describe the personnel security controls that
1158	   you employ for individuals associated with certificate management.
1159	   These should be commensurate to those used in the management of INR
1160	   distribution.>
1161	       5.3.1. Qualifications, experience, and clearance requirements

1163	       5.3.2. Background check procedures

1165	       5.3.3. Training requirements

1167	       5.3.4. Retraining frequency and requirements

1169	       5.3.5. Job rotation frequency and sequence

1171	       5.3.6. Sanctions for unauthorized actions

1173	       5.3.7. Independent contractor requirements

1175	       5.3.8. Documentation supplied to personnel

1177	5.4. Audit Logging Procedures

1179	   <As per the CP, describe in the following sections the details of how
1180	   you implement audit logging.>

1182	       5.4.1. Types of Events Recorded

1184	   Audit records will be generated for the basic operations of the
1185	   certification authority computing equipment.  Audit records will
1186	   include the date, time, responsible user or process, and summary
1187	   content data relating to the event.  Auditable events include:

1189	  . Access to CA computing equipment (e.g., logon, logout)

1191	  . Messages received requesting CA actions  (e.g., certificate
1192	     requests, certificate revocation requests, compromise
1193	     notifications)

1195	  . Certificate creation, modification, revocation, or renewal actions

1197	  . Posting of any material to a repository

1199	  . Any attempts to change or delete audit data
1200	   <List here any additional types of events that will be audited.>

1202	       5.4.2. Frequency of Processing Log

1204	   <Describe your procedures for review of audit logs.>
1205	       5.4.3. Retention Period for Audit Log

1207	   <Describe your policies for retention of audit logs.>

1209	       5.4.4. Protection of Audit Log

1211	   <Describe your policies for protection of the audit logs.>

1213	       5.4.5. Audit Log Backup Procedures

1215	   <Describe your policies for backup of the audit logs.>

1217	       5.4.6. Audit Collection System (Internal vs. External) [OMITTED]

1219	       5.4.7. Notification to Event-causing Subject [OMITTED]

1221	       5.4.8. Vulnerability Assessments

1223	   <Describe any vulnerability assessments that you will apply (or have
1224	   already applied) to the PKI subsystems.  This should include whether
1225	   such assessments have taken place and any procedures or plans to
1226	   perform or repeat/reassess vulnerabilities in the future.>

1228	5.5. Records archival [OMITTED]

1230	5.6. Key Changeover

1232	   The <Name of Organization> CA certificate will contain a validity
1233	   period that is at least as long as that of any certificate being
1234	   issued under that certificate.  When <Name of Organization> CA
1235	   changes keys it will follow the procedures described in [RFC6489].

1237	5.7. Compromise and disaster recovery [OMITTED]

1239	5.8. CA or RA Termination

1241	   <Describe your policy for management of your CA's INR distributions
1242	   in case of its own termination.>

1244	6. Technical Security Controls

1246	   This section describes the security controls used by <Name of
1247	   Organization>.

1249	6.1. Key Pair Generation and Installation

1251	       6.1.1. Key Pair Generation

1253	   <Describe the procedures used to generate the CA key pair, and, if
1254	   applicable, key pairs for subscribers.  In most instances, public-key
1255	   pairs will be generated by the subscriber, i.e., the organization
1256	   receiving the distribution of INRs.  However, your procedures may
1257	   include one for generating key pairs on behalf of your subscribers if
1258	   they so request.>

1260	       6.1.2. Private Key Delivery to Subscriber

1262	   <If the procedures in 6.1.1 include providing key pair generation
1263	   services for subscribers, describe the means by which private keys
1264	   are delivered to subscribers in a secure fashion. Otherwise say this
1265	   is not applicable.>

1267	       6.1.3. Public Key Delivery to Certificate Issuer

1269	   <Describe the procedures that will be used to deliver a subscriber's
1270	   public keys to the <Name of Organization> RPKI CA.  These procedures
1271	   should ensure that the public key has not been altered during transit
1272	   and that the subscriber possesses the private key corresponding to
1273	   the transferred public key. >

1275	       6.1.4. CA Public Key Delivery to Relying Parties

1277	   CA public keys for all entities (other than trust anchors) are
1278	   contained in certificates issued by other CAs and will be published
1279	   to the RPKI repository system. Relying parties will download these
1280	   certificates from this system. Public key values and associated data
1281	   for (putative) trust anchors will be distributed out of band and
1282	   accepted by relying parties on the basis of locally-defined criteria,
1283	   e.g., embedded in path validation software that will be made
1284	   available to the Internet community.

1286	       6.1.5. Key Sizes

1288	   The key sizes used in this PKI are as specified in [RFC6485].

1290	       6.1.6. Public Key Parameters Generation and Quality Checking

1292	   The public key algorithms and parameters used in this PKI are as
1293	   specified in [RFC6485].

1295	   <If the procedures in 6.1.1 include subscriber key pair generation,
1296	   EITHER insert here text specifying that the subscriber is responsible
1297	   for performing checks on the quality of its key pair and saying that
1298	   <Name of Organization> is not responsible for performing such checks
1299	   for subscribers OR describe the procedures used by the CA for
1300	   checking the quality of these subscriber key pairs.>

1302	       6.1.7. Key Usage Purposes (as per X.509 v3 Key Usage Field)

1304	   The Key usage extension bit values employed in RPKI certificates are
1305	   specified in [RFC6487].

1307	6.2. Private Key Protection and Cryptographic Module Engineering
1308	   Controls

1310	       6.2.1. Cryptographic module standards and controls

1312	   <Describe the standards and controls employed for the CA
1313	   cryptographic module, e.g., it was evaluated under FIPS 140-2/3, at
1314	   level 2 or 3 [FIPS]>.

1316	       6.2.2. Private Key (n out of m) Multi-Person Control

1318	   <If you choose to use multi-person controls to constrain access to
1319	   your CA's private keys, then insert the following text. ''There will
1320	   be private key <insert here n> out of <insert here m> multi-person
1321	   control.''>

1323	       6.2.3. Private Key Escrow

1325	   <No private key escrow procedures are required for the RPKI, but if
1326	   the CA chooses to employ escrow, state so here.>

1328	       6.2.4. Private Key Backup

1330	   <Describe the procedures used for backing up your CA's private key.
1331	   The following aspects should be included. (1) The copying should be
1332	   done under the same multi-party control as is used for controlling
1333	   the original private key.  (2) At least one copy should be kept at an
1334	   off-site location for disaster recovery purposes.>
1335	       6.2.5. Private Key Archival

1337	   See sections 6.2.3 and 6.2.4

1339	       6.2.6. Private Key Transfer into or from a Cryptographic Module

1341	   The private key for <Name of Organization>'s production CA <if
1342	   appropriate, change ''production CA'' to ''production and offline CAs''>
1343	   will be generated by the cryptographic module specified in 6.2.1.
1344	   The private keys will never leave the module except in encrypted form
1345	   for backup and/or transfer to a new module.
1346	       6.2.7. Private Key Storage on Cryptographic Module

1348	   The private key for <Name of Organization>'s production CA <if
1349	   appropriate, change ''production CA'' to ''production and offline CAs''>
1350	   will be stored in the cryptographic module. It will be protected from
1351	   unauthorized use <say how here>.

1353	       6.2.8. Method of Activating Private Key

1355	   <Describe the mechanisms and data used to activate your CA's private
1356	   key.>

1358	       6.2.9. Method of Deactivating Private Key

1360	   <Describe process and procedure for private key deactivation here.>.

1362	       6.2.10. Method of Destroying Private Key

1364	   <Describe the method used for destroying your CA's private key, e.g.,
1365	   when it is superseded.  This will depend on the particular module.>

1367	       6.2.11. Cryptographic Module Rating

1369	   <Describe the rating of the cryptographic module used by the CA, if
1370	   applicable.>

1372	6.3. Other aspects of Key Pair Management

1374	       6.3.1. Public Key Archival

1376	   <Because this PKI does not support non-repudiation, there is no need
1377	   to archive public keys. If keys are not archived, say so. If they
1378	   are, describe the archive processes and procedures.>
1379	       6.3.2. Certificate Operational Periods and Key Pair Usage
1380	          Periods

1382	   The <Name of Organization> CA's key pair will have a validity
1383	   interval of <insert number of years -                                            - These key pairs and
1384	   certificates should have reasonably long validity intervals, e.g., 10
1385	   years, to minimize the disruption caused by key changeover.>

1387	6.4. Activation data

1389	       6.4.1. Activation Data Generation and Installation

1391	   <Describe how activation data for your CA will be generated.>

1393	       6.4.2. Activation data protection

1395	   Activation data for the CA private key will be protected by <Describe
1396	   your procedures here>.

1398	       6.4.3. Other Aspects of Activation Data

1400	   <Add here any details you wish to provide with regard to the
1401	   activation data for your CA. If there are none, say ''None.''>

1403	6.5. Computer Security Controls

1405	   <Describe your security requirements for the computers used to
1406	   support this PKI, e.g., requirements for authenticated logins, audit
1407	   capabilities, etc.  These requirements should be commensurate with
1408	   those used for the computers used for managing distribution of INRs.>

1410	6.6. Life cycle Technical Controls

1412	       6.6.1. System Development Controls

1414	   <Describe any system development controls that apply to the PKI
1415	   systems, e.g., use of Trusted System Development Methodology (TSDM).>

1417	       6.6.2. Security Management Controls

1419	   <Describe the security management controls that will be used for the
1420	   RPKI software and equipment employed by the CA.  These security
1421	   measures should be commensurate with those used for the systems used
1422	   by the CAs for managing and distributing INRs.>
1423	       6.6.3. Life Cycle Security Controls

1425	   <Describe how the equipment (hardware and software) used for RPKI
1426	   functions will be procured, installed, maintained, and updated.  This
1427	   should be done in a fashion commensurate with the way in which
1428	   equipment for the management and distribution of INRs is handled. >
1429	6.7. Network Security Controls

1431	   <Describe the network security controls that will be used for CA
1432	   operation.  These should be commensurate with the network security
1433	   controls employed for the computers used for managing distribution of
1434	   INRs.>

1436	6.8. Time-stamping

1438	   The RPKI does not make use of time stamping.

1440	7. Certificate and CRL Profiles

1442	   See [RFC6487].

1444	8. Compliance Audit and Other Assessments

1446	   <List here any audit and other assessments used to ensure the
1447	   security of the administration of INRs. These are sufficient for the
1448	   RPKI systems.>

1450	9. Other Business And Legal Matters

1452	   <The sections below are optional. Fill them in as appropriate for
1453	   your organization. The CP says that CAs should cover 9.1 to 9.11 and
1454	   9.13 to 9.17 although not every CA will choose to do so. Note that
1455	   the manner in which you manage your business and legal matters for
1456	   this PKI should be commensurate with the way in which you manage
1457	   business and legal matters for the distribution of INRs.>

1459	9.1. Fees

1461	       9.1.1. Certificate issuance or renewal fees

1463	       9.1.2. Fees for other services (if applicable)

1465	       9.1.3. Refund policy

1467	9.2. Financial responsibility

1469	       9.2.1. Insurance coverage

1471	       9.2.2. Other assets

1473	       9.2.3. Insurance or warranty coverage for end-entities

1475	9.3. Confidentiality of business information

1477	       9.3.1. Scope of confidential information

1479	       9.3.2. Information not within the scope of confidential
1480	          information

1482	       9.3.3. Responsibility to protect confidential information

1484	9.4. Privacy of personal information

1486	       9.4.1. Privacy plan

1488	       9.4.2. Information treated as private

1490	       9.4.3. Information not deemed private

1492	       9.4.4. Responsibility to protect private information

1494	       9.4.5. Notice and consent to use private information

1496	       9.4.6. Disclosure pursuant to judicial or administrative process

1498	       9.4.7. Other information disclosure circumstances

1500	9.5. Intellectual property rights (if applicable)

1502	9.6. Representations and warranties

1504	       9.6.1. CA representations and warranties
1505	       9.6.2. Subscriber representations and warranties

1507	       9.6.3. Relying party representations and warranties

1509	9.7. Disclaimers of warranties

1511	9.8. Limitations of liability

1513	9.9. Indemnities

1515	9.10. Term and termination

1517	       9.10.1. Term

1519	       9.10.2. Termination

1521	       9.10.3. Effect of termination and survival

1523	9.11. Individual notices and communications with participants

1525	9.12. Amendments

1527	       9.12.1. Procedure for amendment

1529	       9.12.2. Notification mechanism and period

1531	9.13. Dispute resolution provisions

1533	9.14. Governing law

1535	9.15. Compliance with applicable law

1537	9.16. Miscellaneous provisions

1539	       9.16.1. Entire agreement

1541	       9.16.2. Assignment

1543	       9.16.3. Severability

1545	       9.16.4. Enforcement (attorneys' fees and waiver of rights)

1547	       9.16.5. Force Majeure

1549	10. Security Considerations
1550	   The degree to which a relying party can trust the binding embodied in
1551	   a certificate depends on several factors.  These factors can include
1552	   the practices followed by the certification authority (CA) in
1553	   authenticating the subject; the CA's operating policy, procedures,
1554	   and technical security controls, including the scope of the
1555	   subscriber's responsibilities (for example, in protecting the private
1556	   key), and the stated responsibilities and liability terms and
1557	   conditions of the CA (for example, warranties, disclaimers of
1558	   warranties, and limitations of liability). This document provides a
1559	   framework to address the technical, procedural, personnel, and
1560	   physical security aspects of Certification Authorities, Registration
1561	   Authorities, repositories, subscribers, and relying party
1562	   cryptographic modules, in order to ensure that the certificate
1563	   generation, publication, renewal, re-key, usage, and revocation is
1564	   done in a secure manner.  Specifically, Section 3 Identification and
1565	   Authentication (I&A); Section 4 Certificate Life-Cycle Operational
1566	   Requirements; Section 5 Facility Management, and Operational
1567	   Controls; Section 6 Technical Security Controls; Section 7
1568	   Certificate and CRL Profiles; and Section 8 Compliance Audit and
1569	   Other Assessments are oriented towards ensuring secure operation of
1570	   the PKI entities such as CA, RA, repository, subscriber systems, and
1571	   relying party systems.

1573	11. IANA Considerations

1575	   None.

1577	12. Acknowledgments

1579	   The authors would like to thank Matt Lepinski for help with the
1580	   formatting, Ron Watro for assistance with the editing, and other
1581	   members of the SIDR working group for reviewing this document.

1583	13. References

1585	13.1. Normative References

1587	   [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate
1588	             Requirement Levels", BCP 14, RFC 2119, March 1997.

1590	   [RFC3280] Housley, R., Polk, W. Ford, W., Solo, D., "Internet X.509
1591	             Public Key Infrastructure Certificate and Certificate
1592	             Revocation List (CRL) Profile", BCP 14, RFC 2119, March
1593	             1997.

1595	   [RFC6484] Kent, S., Kong, D., Seo, K., and Watro, R., "Certificate
1596	             Policy (CP) for the Resource PKI (RPKI),'' February 2012.

1598	   [RFC6487] Huston, G., Michaelson, G., and Loomans, R., ''A Profile for
1599	             X.509 PKIX Resource Certificates,'' February 2012.

1601	   [RFC6485] Huston, G., ''A Profile for Algorithms and Key Sizes for Use
1602	             in the Resource Public Key Infrastructure,'' February 2012.

1604	13.2. Informative References

1606	   [BGP4]   Y. Rekhter, T. Li (editors), A Border Gateway Protocol 4
1607	             (BGP-4). IETF RFC 1771, March 1995.

1609	   [FIPS]   Federal Information Processing Standards Publication 140-3
1610	             (FIPS-140-3), "Security Requirements for Cryptographic
1611	             Modules", Information Technology Laboratory, National
1612	             Institute of Standards and Technology, work in progress.

1614	   [RSA]    Rivest, R., Shamir, A., and Adelman, L. M. 1978. A method
1615	             for obtaining digital signatures and public-key
1616	             cryptosystems. Commun. ACM 21, 2 (Feb.), 120-126.

1618	Author's Addresses

1620	   Stephen Kent
1621	   BBN Technologies
1622	   10 Moulton Street
1623	   Cambridge MA 02138
1624	   USA

1626	   Phone: +1 (617) 873-3988
1627	   Email: skent@bbn.com

1629	   Derrick Kong
1630	   BBN Technologies
1631	   10 Moulton Street
1632	   Cambridge MA 02138
1633	   USA

1635	   Phone: +1 (617) 873-1951
1636	   Email: dkong@bbn.com

1638	   Karen Seo
1639	   BBN Technologies
1640	   10 Moulton Street
1641	   Cambridge MA 02138
1642	   USA

1644	   Phone: +1 (617) 873-3152
1645	   Email: kseo@bbn.com

1647	Copyright Statement

1649	   Copyright (c) 2013 IETF Trust and the persons identified as the
1650	   document authors.  All rights reserved.

1652	   This document is subject to BCP 78 and the IETF Trust's Legal
1653	   Provisions Relating to IETF Documents
1654	   (http://trustee.ietf.org/license-info) in effect on the date of
1655	   publication of this document.  Please review these documents
1656	   carefully, as they describe your rights and restrictions with respect
1657	   to this document. Code Components extracted from this document must
1658	   include Simplified BSD License text as described in Section 4.e of
1659	   the Trust Legal Provisions and are provided without warranty as
1660	   described in the Simplified BSD License.