CA Policy
This page provides the CP/CPS of the UK e-Science CA, and various other CAs operated by the NGS.
CP/CPS is an abbreviation of Certificate Policy and Certification Practices Statement. It is like an agreement or a contract, between people who get certificates, the resources that "consume" them, and the Certification Authority itself. Anyone who does anything with a certificate is subject to the CP/CPS (specifically, the version under which the certificate was issued).
If this sounds like gobbledygook, you should go here instead.
UK e-Science CA
The current version is 1.4.
| Version | Date | CP/CPS | Changelog | What's new? |
|---|---|---|---|---|
| 0.7 | - | cps-0.7.pdf | - | - |
| 0.8 | - | cps-0.8.pdf | cps-0.7-0.8.pdf | - |
| 0.9 | - | cps-0.9.pdf | cps-0.8-0.9.pdf | whatsnew-0.9 |
| 1.0 | 30.10.2003 | cps-1.0.pdf | cps-0.9-1.0.pdf | whatsnew-1.0 |
| 1.1 | 04.03.2005 | cps-1.1.pdf | cps-1.0-1.1.pdf | whatsnew-1.1 |
| 1.2 | 15.05.2005 | cps-1.2.pdf |
cps-1.1-1.2.pdf | whatsnew-1.2 |
| 1.3 | 04.08.2006 | cps-1.3.pdf |
cps-1.2-1.3.pdf | whatsnew-1.3 |
| 1.4 | 04.12.2007 | cps-1.4.pdf |
cps-1.3-1.4.pdf | whatsnew-1.4 |
| 1.5 |
Root CA
The current version is 1.0.
SARoNGS CA
The SARoNGS CA authenticates individuals via the UK Access Management Federation based on their eduPersonTargetedID attributes. It is a requirement that IdPs subscribe to section 6 of the Rules of Membership.
Training CA
The training CA creates and issues credentials for training and related testing purposes. Certificates and private keys are generated by the CA and issued to a single person who is responsible for the certificates. This person will normally distribute the training certificates to the end users, keeping track of who gets which certificates.
Only people authorised to use the service can obtain certificates. They authenticate to the CA using their e-Science CA certificate.
The training CA also issues host certificates.