2 Recommendations

The S.E.E. Team recommends that the S.E.E. Steering Group:

2.1.1 Agree that S.E.E. PKI agencies should adopt the business card approach for issuing certificates to their employees.

2.1.2 Agree that applications may also support passport or associate certificates.

2.1.3 Note that Certification Authorities (CAs), Registration Agents (RAs) and agency Sponsors will follow the registration processes set out in section section 6 - The registration process.

2.1.4 Agree that evidence of identity (EOI) required for registering individuals for business card digital certificates must be such that the Sponsor is confident of the identity of the individual as they are known to the agency.

2.1.5 Note that the above recommendation should enable most agencies to issue their staff S.E.E. Keys without staff providing further EOI.

2.1.6 Agree that proof of identity for the registration of persons not already known to an agency shall follow the Australian GateKeeper 100-point system until the Authentication project can give us further direction.

2.1.7 Agree that the registration process shall be subject to regular review to assure continued compliance with standards, maintain currency with technological developments and minimise compliance costs.

2.1.8 Note that legal digital signature may require stronger registration processes, audit trails, long term certificate status checking and digital time stamping facilities.