CERTIFICATION POLICIES AND PRACTICES
Introduction
OVERVIEW
This document defines a Certification Policy (hereinafter designated as Policy) for the use of digital certificates for cryptography and for digital signatures.
This Policy describes certain standards and practices of the Certifying Authority (AC) operated by the Root Certifying Entity of the State to be used in the supply of electronic identification of the Certifying Entities of the State, as necessary, and within the scope of the Electronic Certification Entity of the State – ECEE (Public Key Infrastructure).
This policy is aimed to be used by all the entities related to the Certifying Authority of the State in Portugal, including in it the Certifying Entities of the State and the Registration Entities that undertake the obligation to comply with this policy.
This Policy is binding to the Root Certifying Entity of the State and governs its respective performance regarding all the certificates issued by it. The specific practices and procedures with which the Certifying Entity implements these policy requirements are kept in a Statement of Certification Practices that has the approval of the Managing Entity of Certification Policies of ECEE and is at the disposal of the Certifying Entities of the State and other Secure Parties.
IDENTIFICATION
This legislative document is denominated “Certificates Policy and Minimum Security Requirements”.
This Policy is exclusively represented by an ”object identifier”, that ids a numeric series contained in a field of each certificate or crossed certificate issued by the Root Certifying Entity of the State in accordance with this Policy. In order to assure this Object Identifier’s interoperability and exclusivity for the Customers, the Root Certifying Entity of the State adopted this policy identifier according to the recommendations contained in the national and international legislation.
The Object Identifier for this Policy is: 2.16.620.1.1.1.2.1.1.0