ATIS Technical Report on Next Generation Network Certificate Management
|Publication Date:||1 February 2013|
This Technical Report defines procedures for managing X.509 certificates used for NGN security based on the trust model defined in [ATIS-1000029] and [ITU-T Y.2701]. It provides informative information and guidance to supplement [ATIS-1000034] regarding the use by the NGN of certificates based on the framework for Public Key Infrastructure (PKI) and Privilege Management Infrastructure (PMI) specified in [ITU-T X.509].
This Technical Report is applicable to an NGN using X.509 certificates for identification, authentication, privilege/attribute management, and/or encryption between network elements, and between user enddevices and the NGN provider customer premise equipment (CPE) provisioning element based on the trust model defined in [ATIS-1000029] and [ITU-T Y.2701]. This includes use of X.509 certificates between network elements of peering providers based on policy and business agreements. This document assumes that the NGN provider is the Certificate Agent (CA). Scenarios where the CA is another entity are not within the scope of this document.
NOTE: NGN Certificate Management is viewed as part of the broader topic of NGN Identity Management (IdM).