1 / 6

Russian DataGrid CA Final Report

Russian DataGrid CA Final Report. Lev Shamardin, SINP MSU. History. Russian DataGrid CA was set up during participation in the EU DataGrid project First approved in August 2001 Updated in 2004 New root key Updated extensions profile Decided to be superseded with RDIG CA in 2005.

caraf
Download Presentation

Russian DataGrid CA Final Report

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Russian DataGrid CA Final Report Lev Shamardin, SINP MSU

  2. History • Russian DataGrid CA was set up during participation in the EU DataGrid project • First approved in August 2001 • Updated in 2004 • New root key • Updated extensions profile • Decided to be superseded with RDIG CA in 2005. • The RDIG CA has the broader range of projects covered. • Last but not least: the changes in funding of grid activities in Russia. • All security activities are still coordinated by the SINP MSU. RDIG CA and CP/CPS overview -- 26th of May, Tallinn

  3. Some statistics RDIG CA and CP/CPS overview -- 26th of May, Tallinn

  4. Phasing out • RDID CA approved in May 2005 • Not issuing new certificates since Oct 3, 2005. • Last certificate expired on Sep 26, 2006. • Still issuing new CRLs • Is this really required since all revoked certificates are now outdated? • Russian DataGrid CA was removed from the latest CA distribution (1.11) RDIG CA and CP/CPS overview -- 26th of May, Tallinn

  5. RDIG CA • Russian Data-Intensive Grid Certificate Authority (RDIG CA) is a new CA for RDIG project, http://egee-rdig.ru. • RDIG CA is operated by RRC “Kurchatov Institute”. • RDIG CA is the successor of Russian DataGrid CA and it serves the role of the main CA for all RDIG projects. • When RDIG CA will be approved by EUGridPMA and will start its operations, Russian DataGrid CA will stop the issuance of a new certificates and issues only CRL’s until the last certificate will be expired (at most for 1 year). • Users are not forced to immediately obtain new certificate from RDIG CA, so the transition will be more or less smooth. • BUT: new certificate namespace is introduced, so users will be forced to reregister in the VO’s. RDIG CA and CP/CPS overview -- 26th of May, Tallinn

  6. Shut down? • We will keep all the logs till the end of 2009 according to our policy. • Termination procedure from the CPS: • Notify all subscribers and cross-certifying CAs. • Notify registration authorities. • Terminate the issuance of certificates and CRLs. • Notify relevant security contacts. • Notify as widely as possible about service termination. RDIG CA and CP/CPS overview -- 26th of May, Tallinn

More Related