Formulation of Certificate Policy and Certification Practice Statement Framework for Subordinate Certification Authorities Indonesia

Arfive Gandhi, Yudho Giri Sucahyo, Tomi Sirait

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

1 Citation (Scopus)

Abstract

Certificate Policy (CP) and Certification Practice Statement (CPS) are mandatory documents for Subordinate Certification Authorities (Sub-CAs) to explain their process business in Indonesia National Public Key Infrastructure (INPKI). Due to Sub-CAs' low proficiency in preparing CP and CPS, Ministry of Communication and Information Technology (MCIT) need to formulate CP and CPS framework for them. The usage of Request For Comment (RFC) 3647 as standard of CP and CPS format should be complemented with statements to comply with legal aspect of information security in Indonesia. This compliance explained in the relevant of provisions in CP and CPS. The research will contribute the acceleration of Sub-CA's readiness in CP and CPS requirements, both in technical and legal aspect. Sub-CAs CP and CPS are important in gaining trust from government as regulator and citizen as subscriber. This research provides guidance for Sub-CAs to compose sufficient CP and CPS related to three aspects: Governance, technical, and human resources requirements. This research also promote future analysis about Level of Assurance, DN structure modification, and physical infrastructure standardization as recommendation for MCIT and Sub-CAs.

Original languageEnglish
Title of host publicationICISS 2016 - 2016 International Conference on Information Science and Security
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781509054930
DOIs
Publication statusPublished - 23 Mar 2017
Event3rd International Conference on Information Science and Security, ICISS 2016 - Pattaya, Thailand
Duration: 19 Dec 201622 Dec 2016

Publication series

NameICISS 2016 - 2016 International Conference on Information Science and Security

Conference

Conference3rd International Conference on Information Science and Security, ICISS 2016
Country/TerritoryThailand
CityPattaya
Period19/12/1622/12/16

Keywords

  • CP
  • CPS
  • Certificate policy
  • Certification authority
  • Certification practice statement
  • Information security
  • Sub-Certification authority

Fingerprint

Dive into the research topics of 'Formulation of Certificate Policy and Certification Practice Statement Framework for Subordinate Certification Authorities Indonesia'. Together they form a unique fingerprint.

Cite this