Table of Contents
1Scope
2References
2.1IdenticalRecommendations/InternationalStandards
2.2PairedRecommendations/InternationalStandards
equivalentintechnicalcontent
2.3AdditionalReferences
3Definitions
4GeneralAspects
4.1BasisofSecurityAssuranceandTrust
4.2InteractionbetweenaTTPandEntitiesUsingits
Services
4.3InterworkingofTTPServices
5ManagementandOperationalAspectsofaTTP
5.1LegalIssues
5.2ContractualObligations
5.3Responsibilities
5.4SecurityPolicy
5.5QualityofService
5.6Ethics
5.7Fees
6Interworking
6.1TTP-Users
6.2User-User
6.3TTP-TTP
6.4TTP-LawEnforcementAgency
7MajorCategoriesofTTPServices
7.1TimeStampingService
7.2Non-repudiationServices
7.3KeyManagementServices
7.4CertificateManagementServices
7.5ElectronicNotaryPublicServices
7.6ElectronicDigitalArchivingService
7.7OtherServices
AnnexA-SecurityRequirementsforManagementofTTPs
AnnexB-AspectsofCAmanagement
B.1ExampleofRegistrationProcessProcedures
B.2AnexampleofrequirementsforCertification
Authorities
B.3CertificationPolicyandCertificationPractice
Statement(CPS)
AnnexC-Bibliography Abstract
Provides guidance for the use and management of Trusted Third Party (TTP) services, a clear definition of the basic duties and services provided, their description and their purpose, and the roles and liabilities of TTPs and entities using their services.
