Repository (Certificate Policy and Certification Practice Statements)

All currently valid and archived documents of the SwissSign Repository are shown on this page. This includes:

  • Certificate Policies (CP) and Certification Practice Statements (CPS) with the descriptions of the processes, roles, obligations and liability applied by SwissSign in issuing certificates. This document also serves as a trusted basis for a third party (Relying Party), who relies on SwissSign certificates.
  • Subscriber agreements: These are the obligations and information which a subscriber or certificate holder must observe when using SwissSign certificates.
  • PKI Disclosure Statement: Describes the services offered and the processes derived from the CP / CPS in a more readable form.
  • Relying Party Agreement: Describes the obligations of a third party to review a certificate before it can trust it.
  • Registration Authority Policy: Describes the duties and responsibilities of an registration authority in all cases where SwissSign's registration authority activity is delegated to a third party (such as Managed PKI).

Should anything be unclear or contradictory, the CP/CPS is the binding document.

These CP/CPS' are designed according to international standards based on RFC 3647. SwissSign reserves the right to modify these statements at any time and without notice.

To identify the correct CP/CPS under which a certificate was issued, the certificate itself contains an extension named "certificate policy”. The certificate policy contains the OID of the CP/CPS document and an URL pointing to the download location of the digitally signed pdf version of the CP/CPS.

Customer and subscribers of certificate services have the possibility to be informed about the changes that are important to them in documents of this repository through an RSS feed. You will find more informations here.