Introduction
End-to-end security is often required in communication between services and users (clients). Security has three different aspects
- privacy of communication - ssl protocol
- message integrity - signed messages, e.g. x.509 certificates
- authenticity of the information provider (server) or requestor (client) - x.509 certificate
It depends on the specific use case whether the relationship of trust must rely on one or more these conditions. The relationship of trust between services as well as services and clients is usually validated by the exchange of X.509 certificates.
RZG Registration Authority (RZG RA)
Grid Certificates
Purpose of Grid-Certificates
- international collabrations
How to obtain a Grid Certificate as a user.
- IGTF, EUGridPMA, CAs, German CAs -> CA-RA infrastructure
- general Users
- users of RZG facilities
- users of Max-Planck.Institutes
- users on the Science and Research campus Garching
- users at IPP and RZG
Validated user of the RZG, in particular those affiliated with an institute of the Max Planck Society can
How to obtain a Grid Server Certificates
In general server certificates can be requested on the same way as user certificates are applied.
Certificates compliant to the DFN PKI Global
Purpose of Global Certificates
How to obtain a DFN Global certificate
Erklärung zum Zertifizierungsbetrieb der MPG CA in der DFN-PKI
Zertifizierungsrichtlinie der DFN-PKI zu den Sicherheitsniveaus: Global, Classic und Basic
DFN-Verein CP der DFN-PKI V2.2
Please check http://www.pki.dfn.de/index.php?id=policies for possible policy updates.
