Navigate

CCI-001995

CCI-001995 Definition

The organization requires that the registration process, to receive organization-defined types of and/or specific authenticators, be conducted in person, or by a trusted third-party, before an organization-defined registration authority with authorization by organization-defined personnel or roles.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The DoD PKI Certificate Policy (CP) requires in-person authentication of DoD PKI applicants in accordance with each Certificate Management Authority’s (CMA’s) Certification Practice Statement (CPS) prior to issuance of credentials. The NSS PKI CP requires in-person authentication of NSS PKI applicants by a Registration Authority (RA) or Trusted Agent (TA) prior to issuance of credentials. DoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.

Validation Procedures

The DoD PKI CP requires in-person authentication of DoD PKI applicants in accordance with each CMA’s CPS prior to issuance of credentials. The NSS PKI CP requires in-person authentication of NSS PKI applicants by an RA or TA prior to issuance of credentials. DoD Components are automatically compliant with this CCI because they are covered by the DoD PKI CP and NSS PKI CP.

Compelling Evidence

Automatically Compliant

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001995.

Control	Description
IA-5(3)	The organization requires that the registration process to receive [organization-defined types of and/or specific authenticators] be conducted [] before [organization-defined registration authority] with authorization by [organization-defined personnel or roles].