Validation authority

 

What are our responsibilities?


Issue electronic certificates

Publish and facilitate access to the validity status of certificates.

Guarantee the identity of the certificate holders.

Guarantee the veracity of the information included in the certificates.

Revoke certificates when it is aware that the security of the system has been compromised.

Manage the Public Key Infrastructure in accordance with the legal and technical standards in force at any given time.

 

Did you know?

 
 

ANF AC is one of the few CA's that has and offers, in free distribution, the necessary technology to verify the validity of the ocsp responses it issues.

Each OCSP has a unique qualified electronic certificate that identifies it.

All the international legislation agrees in determining the obligation of the CA in providing this service and in imposing to the third parties that trust, the consultation previous to the acceptance of an electronic signature.

 

ANF AC has an international network of permanently updated servers, this technical infrastructure allows us to provide this validation service in different modalities:

  • Consultations through OCSP protocol.
  • LDAP service queries.
  • Download of CRL's.

Developed in compliance with international standards:

  • IETF RFC 5280 (Internet X.509 Public Key Infrastructure Certificate and CRL Profile) updated by 6818.
  • IETF RFC 6960 (Online Certificate Status Protocol – (OCSP)).
  • IETF RFC 4511 Lightweight Directory Access Protocol (LDAP): The Protocol.
  • IETF RFC 4510 Lightweight Directory Access Protocol (LDAP):Technical Specification Road Map.

ANF AC has an international network of permanently updated servers, this technical infrastructure allows us to provide this validation service in different modalities:

  • Consultations through OCSP protocol.
  • LDAP service queries.
  • Download of CRL's.

Developed in compliance with international standards:

  • IETF RFC 5280 (Internet X.509 Public Key Infrastructure Certificate and CRL Profile) updated by 6818.
  • IETF RFC 6960 (Online Certificate Status Protocol – (OCSP)).
  • IETF RFC 4511 Lightweight Directory Access Protocol (LDAP): The Protocol.
  • IETF RFC 4510 Lightweight Directory Access Protocol (LDAP):Technical Specification Road Map.