Search results
Results from the Health.Zone Content Network
The common access card, also commonly referred to as the CAC, is the standard identification for active duty United States defense personnel. The card itself is a smart card about the size of a credit card. [1] Defense personnel that use the CAC include the Selected Reserve and National Guard, United States Department of Defense (DoD) civilian ...
A public key infrastructure ( PKI) is a set of roles, policies, hardware, software and procedures needed to create, manage, distribute, use, store and revoke digital certificates and manage public-key encryption. The purpose of a PKI is to facilitate the secure electronic transfer of information for a range of network activities such as e ...
Public key certificate. In cryptography, a public key certificate, also known as a digital certificate or identity certificate, is an electronic document used to prove the validity of a public key. [1] [2] The certificate includes the public key and information about it, information about the identity of its owner (called the subject), and the ...
FIPS 140-3 testing began on September 22, 2020, and the first FIPS 140-3 validation certificates were issued in December 2022. FIPS 140-2 testing was still available until September 21, 2021 (later changed for applications already in progress to April 1, 2022), creating an overlapping transition period of more than one year. FIPS 140-2 test ...
The Orange Book. Trusted Computer System Evaluation Criteria ( TCSEC) is a United States Government Department of Defense (DoD) standard that sets basic requirements for assessing the effectiveness of computer security controls built into a computer system. The TCSEC was used to evaluate, classify, and select computer systems being considered ...
The certificates for which a CRL should be maintained are often X.509/public key certificates, as this format is commonly used by PKI schemes. Revocation versus expiration. Expiration dates are not a substitute for a CRL. While all expired certificates are considered invalid, not all unexpired certificates should be valid.
RFC 8954: OCSP Nonce Extension. The Online Certificate Status Protocol ( OCSP) is an Internet protocol used for obtaining the revocation status of an X.509 digital certificate. [2] It is described in RFC 6960 and is on the Internet standards track. It was created as an alternative to certificate revocation lists (CRL), specifically addressing ...
The DoD Information Assurance Certification and Accreditation Process ( DIACAP) is a deprecated United States Department of Defense (DoD) process meant to ensure companies and organizations applied risk management to information systems (IS). DIACAP defined a DoD-wide formal and standard set of activities, general tasks and a management ...