Root Standard CA SHA2 - První certifikační autorita

ř
tayllorcnx.c.rn
TAYLLOR & COX s.r.o.
Member of TAYLLORCOX UK Ltd. 75 King William St,, EC4N, London, UK
Na Florenci 1055/35' Nové Město - Praha 1, Cz 110 00' [email protected]
_ system ceňiÍication board lSo/lEC 17021 .11 accredited' Tc sAlB service attest inspection board
Tc scEB
lSoilEC
17020.12 accredited
AUDIT STATEMENT REPORT- Root Standard CA SHA2
Part
l:
Basic inforrnation
Organization:
První ceÉifikaěníautorita a's. (hereinafter I'cA)
ldentification No.: 264 39 395
Podvinný mlýn217816
Praha 9 _ Libeň
cz
190 00
Czech Republic
Auditor:
Audit team:
Part
}l:
Conformity Evaluatřon of Service
ETSI TS 1A2042V2/.1 (2013-02): "Electronic Signatures and lnfrastructures (ESl); Policy requirements for certification authorities issuing public key certificates", policies NCP, NCP+.
TAYLLOR & COX s.r.o.
Member of TAYLLORCOX UK Ltd. 75 King William St., EC4N, London, UK
Na Florenci 1055/35' Nové Město - Praha 1, cz 110 00, [email protected]
TC SCEB - system certification board ISO/IEC 17021:11 accredited, TC SAIB service attest inspection board ISO/IEC 17020.12 accredited
Audit statement report - Root Standard CA SHA2
Page
1
i3
ř
tayllorcnx'com
Part
1.
ll!: Audit
information
Scope
"Certificate issuing and management system" issuing public key certificates complying with ETSI
policies NCP, NCP+.
TS 102 042
2. Audit target
Certification servíces provided by Root CA'
A. Root CA:
The target of audit, the certification service I'cA _ Standard CeÉification Authority,0912009 ETsl TS 102042
policies NCP, NCP+ is described by the information contained in the certificate:
lssuer of CA certificate (Root CA or intermediate CA):
CN = l-CA - Standard Gertification Authority, 09/2009
certificate Serial Number: í6 e3 60
serial number of ceÉificate
Name of CA (as in certlficate)
16 e3 60
CN = LCA - Standard Certification Authoritv. 09/2009
together with:
Ceňification Practice Statements (CPS):
"Certifikačníprováděcí směrnice vydávánÍ kořenového certifikátu l'CA
22,t.CA
-
komerčnícertifikáty'', version 3.4, as of 2015-09-
"Certifikační prováděcí směrnice vydávání komerčníchcertifikátů'', version 3.3, as oÍ 2o15-a9-22, l.CA
Certification Policies (CP):
"Certifikačnípolitika vydávání kořenového certifikátu l.CA - komerčnícertifikáty"' version 3'3 as of 2o15-09-22' l.CA,
"CertiÍikačnípolitika vydávání komerčníchcertifikátů ", version 3.'1 as of 201 1-04-01' l'cA
3.
Audit requarements
ETSI TS 102 042 V2.4.1 (2013-02): "Electronic Signatures and lnfrastructures (ESl); Policy requirements for
certification authorities issuing public key certificates" policies NCP, NCP+.
4. Audit
A.
B.
C.
workflow
Time period:
from 2016-05-02 to 201 6-05-1 B
Location:
Headquarter and operational premises of l.CA company
Methodology:
ETSI TS 1'19 403 V2.1.1 (2014-11): "Electronic Signatures and lnfrastructures (ESl); Trust Service Provider
Conformity Assessment - Requirements for conformity assessment bodies assessing Trust Service Providers"
D.
Documentation and procedures:
Policies and practices that rule the provision and operation of the certification services
TAYLLOR & COX s.r.o.
Member of TAYLLORCOX UK Ltd. 75 King William St., EC4N, London, UK
Na Florenci 1055/35, Nové Město - Praha 1' Cz'l10 00, inÍo@tayllorcox'com
- system certification board lSOllEC 17021:11 accredited, TC SAIB service attest inspection board lSOllEC 17020:12 accredited
TC SCEB
Audit statement report - Root Standard CA SHA2
Page2l3
qf
Part
hyllorcoxcom
lV: Conclusion
Auditor confirms that the examination of LCA's "Certificate issuing and management system" was conducted in
accordance with ETSI technical specifications, in particular TS 1 02 042, TS I 19 403.
The results of examination based on auditor's observations, review of relevant documentation (including web
www.ica.cz) and test of administrative and operational procedures and implemented respective controls concluded to the auditor's statement that audited certification services of the company První certifikačníautorita,
a.s.
comply
with requirements of ETSI TS 102 042V2.4.1 (2013-02): "Electronic Signatures and lnfrastructures (ESl); Policy
requirements for certification authorities issuing public key certificates".
Part
V:
Signatures and confirmation of audit report
Signature of lead auditor:
lng' Radek Nedvěd
llill"i;\
Ptrague: 2016-05-1Á
66o**hr,"q \
,/rr*
,í"V
/Éb
'\
\
fu-,ř',,ll*-'*ffi}
\.,Ó.
o10
^,lr'i,/
\'kšq:.ul*pY'
TAYLLOR & COX s.r.o.
Member of TAYLLORCOX UK Ltd. 75 King William St., EC4N, London, UK
Na Florenci 1055/35, Nové Město - Praha 1, cz 110 00, iní[email protected]
Tc scEB
_
system certiÍication board
lSo/lEC 17021 11accredited, Tc sAlB service attest inspection board lSo/lEC 17020:12 accredited
Audit statement report - Root Standard CA SHA2
Page3/3