PKI Disclosure Statement



Similar documents
ARTL PKI. Certificate Policy PKI Disclosure Statement

Land Registry. Version /09/2009. Certificate Policy

GlobalSign Subscriber Agreement for DocumentSign Digital ID for Adobe Certified Document Services (CDS)

Statoil Policy Disclosure Statement

TELSTRA RSS CA Subscriber Agreement (SA)

IF YOU CHOOSE NOT TO ACCEPT THIS AGREEMENT, WHICH INCLUDES THE CERTIFICATE POLICY, THEN CLICK THE "DECLINE" BUTTON BELOW.

Certum QCA PKI Disclosure Statement

Ericsson Group Certificate Value Statement

GlobalSign Subscriber Agreement for PersonalSign and DocumentSign for Adobe CDS Certificates Combined Agreement for epki (US)

STATUTORY INSTRUMENTS 2012 No. _

Apple Corporate Certificates Certificate Policy and Certification Practice Statement. Apple Inc.

Vodafone Group Certification Authority Test House Subscriber Agreement

Class 3 Registration Authority Charter

Vodafone Group CA Web Server Certificate Policy

ING Public Key Infrastructure Technical Certificate Policy

Comodo Certification Practice Statement

Neutralus Certification Practices Statement

CA Certificate Policy. SCHEDULE 1 to the SERVICE PROVIDER AGREEMENT

Certification Practice Statement (ANZ PKI)

CERTIMETIERSARTISANAT and ELECTRONIC SIGNATURE SERVICE SUBSCRIPTION CONTRACT SPECIFIC TERMS AND CONDITIONS

ENTRUST CERTIFICATE SERVICES

Apple Inc. Certification Authority Certification Practice Statement Worldwide Developer Relations Version 1.14 Effective Date: September 9, 2015

Starfield Technologies, Inc. Certificate Policy and Certification Practice Statement (CP/CPS)

Certipost Trust Services. Certificate Policy. for Lightweight Certificates for EUROCONTROL. Version 1.2. Effective date 03 May 2012

Ford Motor Company CA Certification Practice Statement

ComSign Ltd. Certification Practice Statement (CPS)

HKUST CA. Certification Practice Statement

USER AGREEMENT FOR: ELECTRONIC DEALINGS THROUGH THE CUSTOMS CONNECT FACILITY

apple WWDR Certification Practice Statement Version 1.8 June 11, 2012 Apple Inc.

Transnet Registration Authority Charter

Privacy Policy. Preparation date: 12 March toyotafinance.com.au

LET S ENCRYPT SUBSCRIBER AGREEMENT

TeliaSonera Root CA v1 Certificate Practice Statement. Published by: TeliaSonera AB

Gatekeeper PKI Framework. Archived. February Gatekeeper Public Key Infrastructure Framework. Gatekeeper PKI Framework.

How To Understand And Understand The Certificate Authority (Ca)

The use of this website is subject to the following terms of use:

Certification Practice Statement

TACC ROOT CA CERTIFICATE POLICY

SECOM Trust.net Root1 CA

Trustis FPS PKI Glossary of Terms

GEOSURE PROTECTION PLAN

NetSure Certificate means any of the types of Certificates that are subject to this Plan, as listed in Appendix A, List of Covered Services.

Qualified Electronic Signatures Act (SFS 2000:832)

Clevertar Privacy Policy

Eskom Registration Authority Charter

Certification Practice Statement

Post.Trust Certificate Authority

Electronic business conditions of use

COMPANIES REGISTRY NOTES FOR GUIDANCE ON LIQUIDATION AND INSOLVENCY. DEPARTMENT of ENTERPRISE, TRADE and INVESTMENT CONTENTS INTRODUCTION

REVENUE ON-LINE SERVICE CERTIFICATE POLICY. Document Version 1.2 Date: 15 September OID for this CP:

SMS SERVICE PROVISION

Certification Practice Statement

X.509 Certificate Policy for the Australian Department of Defence Root Certificate Authority and Subordinate Certificate Authorities

Gandi CA Certification Practice Statement

Starfield Technologies, LLC. Certificate Policy and Certification Practice Statement (CP/CPS)

Equens Certificate Policy

QUOVADIS ROOT CERTIFICATION AUTHORITY CERTIFICATE POLICY/ CERTIFICATION PRACTICE STATEMENT. OIDs:

Credit Reporting Privacy Code 2004

David Jones Storecard and David Jones American Express Card Member Agreement, Financial Services Guide and Purchase Protection. Terms and Conditions

365 Phone, Online and Mobile Banking Terms and Conditions - Republic of Ireland Effective from 25 th November 2013

Tata Consultancy Services Limited Certifying Authority. Certification Practice Statement

ETSI TS V1.4.3 ( )

Gatekeeper PKI Framework. February Registration Authority Operations Manual Review Criteria

Declaration Form for EP Online/ WP Online User Agreement

Public Key Infrastructure (PKI)

Act 7 Electronic Signatures Act 2011

Internet Banking Internal Control Questionnaire

merchant application form

QUOVADIS ROOT CERTIFICATION AUTHORITY CERTIFICATE POLICY/ CERTIFICATION PRACTICE STATEMENT. OIDs:

No. S ELECTRONIC TRANSACTIONS ACT 2010 (ACT 16 OF 2010) ELECTRONIC TRANSACTIONS (CERTIFICATION AUTHORITY) REGULATIONS 2010

National Identity Exchange Federation (NIEF) Trustmark Signing Certificate Policy. Version 1.1. February 2, 2016

CMS Illinois Department of Central Management Services

Meeting the FDA s Requirements for Electronic Records and Electronic Signatures (21 CFR Part 11)

Danske Bank Group Certificate Policy

Debit MasterCard. Conditions of Use. These are the conditions of use that apply to your Rabobank Debit MasterCard. You must read and retain them.

ONLINE SERVICES TERMS AND CONDITIONS S E P T E M B E R

THE RSA ROOT SIGNING SERVICE Certification Practice Statement For RSA Certificate Authorities (CAs) Published By: RSA Security Inc.

LET S ENCRYPT SUBSCRIBER AGREEMENT

ENTRUST CERTIFICATE SERVICES

White paper. Implications of digital certificates on trusted e-business.

Canadian Pharmaceutical Distribution Network Certificate Authority Services Agreement. In this document:

EBIZID CPS Certification Practice Statement

Transcription:

Land Registry Version 2.0 23/07/2008 PKI Disclosure Statement

1. Introduction Land Registry has created an e-security platform for its customers to facilitate role-based access, authentication and electronic signatures within its e-services. The security services include a Public Key Infrastructure, which has a Certification Authority operated by Land Registry (CA). The policy requirements on the operation and management of the CA issuing Certificates are defined in the Land Registry Certificate Policy (CP) document such that Subjects certified by the CA and Relying Parties may have confidence in the reliability of the Certificates. The purpose of this document is to summarise the key points of the CP for the benefit of Subscribers, Subjects and Relying Parties. NB. The terms used in this document are defined in the CP. 2. Certificate Authority Contact Information: The Registrar Head Office Trafalgar House 1 Bedford Park Croydon CR0 2AQ Contact: certificate_policies@landregistry.gov.uk 3. Certificate type, validation procedures and usage The CA issues four types of Certificate: 1. Land Registry Local Signing for use only where End Users create Electronic Signatures using Private Keys held on Tokens attached to their local machines. 2. Land Registry Central Signing for use only where End Users create Electronic Signatures using Private Keys held centrally by Land Registry. 3. Land Registry Individual Authentication for use only where End Users need to perform Administration functions within the e-security service, using identity-based authentication. 4. Land Registry Device Authentication for use only where Devices with software key storage need to communicate securely within the Land Registry Network. The CA shall ensure that evidence of Subjects identification and the accuracy of their names and associated data are either properly examined as part of the defined service or, where applicable, concluded through examination of attestations from appropriate and authorised sources. 3

4. Reliance Limits: The CA does not set reliance limits for the Certificates it issues, but see Section 7 below for limitation of liability. 5. Obligations of Subscribers: It is the responsibility of Subscribers to: only use the Key Pairs for the purposes defined in Section 3 above and in accordance with any other limitations that may be notified to the Subscriber submit accurate and complete information to the CA during Subject registration in accordance with the requirements of the CP exercise reasonable care to avoid unauthorised use of the Subject s Private Key notify the CA, without any unreasonable delay, if any of the following occurs up to the end of the validity period indicated in the Certificate: the Subject s Private Key has been potentially or actually lost, stolen or compromised control over the Subject s Private Key has been lost due to potential or actual compromise of activation data (eg PIN code) or other reasons inaccuracy or changes to the Certificate content, as notified to the Subscriber. ensure that if the Subscriber or Subject generates the Subject s Key Pair, only the Subject holds the Private Key ensure that Private Keys are generated within the hardware key storage device (Token). 6. Certificate status checking obligations of Relying Parties: The obligations of the Relying Party, if it is to reasonably rely on a Certificate, are to: verify the validity, suspension or revocation status of the Certificate using current revocation status information as indicated to the Relying Party in the CP take account of any limitations on the usage of the Certificate indicated to the Relying Party either in the Certificate or the terms and conditions (see Section 3 above for usage) take any other precautions prescribed in the Certification Practice Statement (CPS). 4

7. Limited warranty & disclaimer/ limitation of liability: The liability taken by the CA is limited to the correct application of procedures as declared in the CPS (incorporated into the Technical Manual); these procedures relate to the issue and management of digital Certificates. Therefore any failure of transaction that utilises the digital Certificate is out of scope. In essence the liability will include the correct identification of Subjects according to the declared practices. If a transaction is found to be in error through the incorrect identification of the Subject through failing to follow the declared practices, then the CA is liable. If the Subject is incorrectly identified, but the error was within the documents used to support the Subject s claim to an identity, then the CA shall not be liable. The CA shall include any limitation of liability within the Certificate, providing the relevant information within an easily accessible statement both on its web site and within the CPS. 8. Applicable agreements, Certification Practice Statement, Certificate Policy: The Network Access Agreement (NAA), the CP, and the CPS (incorporated into the Technical Manual) are published in full on the Land Registry website, www.landregistry.gov.uk and are also available upon application in writing to the CA (see Section 1 above). 9. Privacy policy: The CA shall safeguard the privacy of Subject information as prescribed by the Data Protection Act. It will also ensure that all relevant information concerning a Certificate is recorded for an appropriate period of time, in particular for the purpose of providing evidence of certification for the purposes of legal proceedings. 10. Refund policy: Not applicable. 11. Applicable law, complaints and dispute resolution: The CA has policies and procedures for the resolution of complaints and disputes received from customers or other parties about the provisioning of CA services or any other related matters. Details can be obtained by applying to the CA (see Section 2 above). English Law shall govern the provision of CA services. All parties shall submit to the exclusive jurisdiction of the courts of England and Wales. 5

12. Certificate Authority and Repository Licences, Trust Marks and Audit: The CA issues Certificates using Entrust products that have been accredited to the relevant Common Criteria EAL 3 and/or EAL 4 augmented requirements. The CA service operation has been designed and built to attain tscheme approval. Audit is an integral part of the CA services whereby all significant events shall be logged to provide a trail, as documented in the CPS. Audit of the CA services themselves shall be carried out on a periodic basis in accordance with Land Registry security policies and procedures. 6

7

For alternative formats please contact the customer contact centre on 0844 892 1111. Issued by Land Registry Corporate Marketing Services Janary 2016 8 Crown copyright 2016 Land Registry

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information