Public Key Infrastructure (PKI)

About GPO PKI

• Certified as a Shared Service Provider (SSP) PKI – July 2007
• Cross-Certified with Federal Bridge Certification Authority in December 2005
  
  • Met all exacting requirements and standards of Federal PKI Policy Authority and federal policies
• Meets all Federal PKI requirements
• In operation at GPO since 2004

• Getting started with GPO PKI
• GPO PKI - Getting Started Presentation

GPO PKI Services

• End User Certificates
  
  • Digital Signature Certificate
  • Encryption Certificate
• Meets all Federal PKI requirements
  
  • LRA requires a smartcard certificate
  • Extra costs for smartcard and smartcard reader
• In operation at GPO since 2004

Certificate Uses

• File encryption
• Email encryption (S/MIME)
  
  • For Outlook email
• File signing
• Other uses are possible in consultation with GPO PKI

Documents

• Device Certification Registration doc
• Example SF-1 Form for GPO PKI pdf
• GPO PKI Pricing — GPO Circular Letter 744
• NEW — GPO PKI Client Software Upgrade (ESP 9.1 client) pdf
• NEW — 508 Compliance for Entrust ESP v9.x pdf
• Principal CA CPS (Certificate Practices Statement) pdf
  
  • Subordinate CA CPS (Certificate Practices Statement) pdf
• Certificate Policy pdf
• Certificate Registration pdf
• Certificate Revocation pdf
• End User Subscriber Agreement Form pdf
• Memorandum of Agreement for PKI Services Template doc

Software

• NEW — Entrust ESP 9.1 (for XP, Vista, Windows 7)
• NEW — Outlook Plugin Installation for ESP 9.1
• Mac client build