Common PKI
Common PKI , formerly Industrial Signature Interoperability and Mailtrust Specification ( ISIS-MTT ), was a specification for certifications, jointly published by TeleTrusT and T7 . In October 2009 the first version was published under the name ISIS-MTT. In September 2008 the name was changed to Common PKI for trademark reasons. The last version 2.0 was released on January 20, 2009. The Common PKI is no longer being developed and the website is offline.
The German Ministry of Economic Affairs promoted this standard profile for the interoperability of PKI applications.
The Common PKI specification is a profile of internationally recognized and recognized standards for electronic signatures , encryption and public key infrastructures . The Common PKI takes into account all business-relevant electronic signatures up to the qualified electronic signature according to the German Signature Act (SigG), with which the formal requirements in private and administrative law can be complied with. In addition, the specification also includes security functions for secure e-mail with different security levels and compatibility with internationally accepted standards. This enables the rapid availability of interoperable security products both at the certification service provider level and at the user level (client side).
Common PKI Specification 2.0
The current version of the Common PKI specification consists of the following parts:
- Part 1: Certificate and CRL Profiles
- Part 2: PKI management
- Part 3: CMS based Message Formats
- Part 4: Operational Protocols
- Part 5: Certificate Path Validation
- Part 6: Cryptographic Algorithms
- Part 7: Signature API
- Part 8: XML based Message Formats
- Part 9: SigG profiles
Implementation in practice
Both signature application providers and trust center operators were involved in drawing up the specification . All German trust centers for qualified electronic signatures have implemented the Common PKI specification. In addition, the standard profile is officially recommended by the public sector, so that the Common PKI specification is supported by leading German product developers and solution providers for e-business and e-government .
This ensures a high level of quality for the interoperability of Common PKI-compliant products and solutions and creates the prerequisites for high market acceptance and rapid market penetration .
Product registration
Manufacturers can register their products. It has replaced the earlier Common PKI seal since May 2013. As part of a clearly defined process, a manufacturer declaration is issued, which is published on the Common PKI website. This can be done on the basis of a test protocol from the Common PKI test system, but it can also be tested by one of the recognized test laboratories for products, through which compliance with the Common PKI specification has been proven for certain functionality classes. The requirements are described in the Common PKI Compliance Criteria.
Web links
- openlimit.com / ... - General historical information on the Common PKI including a certificate example (accessed on November 27, 2018).
- 2b-advice.com/T7-en - Archived former T7 website (English)
- 2b-advice.com/T7-en/Common-PKI - Archived Common-PKI website (English)
- 2b-advice.com/T7-en/Common-PKI-V20-Specification - Archived download page of all Common PKI documents (English)
- t7ev.org (English) (offline)
- common-pki.org (offline)
Individual evidence
- ↑ omnisecure.berlin / ... - ISIS-MTT becomes Common PKI, News from September 5, 2008 (accessed October 9, 2018).
- ↑ omnisecure.berlin / ... - ISIS-MTT becomes Common PKI, News from September 5, 2008 (accessed October 9, 2018).
- ↑ Seals and testing laboratories ( page no longer available , search in web archives ) Info: The link was automatically marked as defective. Please check the link according to the instructions and then remove this notice.
