• PKI related projects and services in Europe
• Other projects worldwide related to PKI deployment
• Information resources on PKI and related issues - RFCs, I-Ds, mailing lists, etc.
• Tools and Software for PKI/CA based Internet applications

• The PKI page at DFN - http://www.pki-page.org/
• X.509 Style Guide by Peter Gutmann
• Architecture for Public-Key Infrastructure (APKI) -  Open Group Guide
• S/MIME and PGP/MIME at Internet Mail Consortium
• DNSSEC resources at NLnet Labs
• SPKI/SDSI Certificates syntax - Reference page by Carl Ellison
• The OpenSource PKI book
• Verisign Information Library
• Directories and Public – Key Infrastructure (PKI)
• PKCS #11: Cryptographic Token Interface Standard
• Ten Risks of PKI: What You're Not Being Told About Public Key Infrastructure by B. Schneier, C. Ellison
• Public Key Infrastructure Architecture (The Burton Group)
• General PKI information and OCSP related market overview at OpenValidation.org
• A Survey of Public Key Infrastructures: PKI References  by Marc Branchaud
• Rethinking PKI and digital certificates - building in privacy - Thesis of Stefan Brands
• Public-Key Infrastructures by Bert-Jaap Koops (Outdated)
• The Global Internet Trust Register, 1999 edition by Ross Anderson, Bruno Crispo, Jong-Hyeon Lee, Charalampos Manifavas, Vaclav Matyas, Jr., and Fabien Petitcolas - http://www.cl.cam.ac.uk/Research/Security/Trust-Register/index.html
• Easier Email Security is on the Way?
• CADDISC project - Combining LDAP and DNSsec to distribute keys securely
• VERICERT Project - VeriCert aims to improve LDAP security for the keys publishing service
• CertiVeR Project - Certificate Verification and Revocation
  

PKI: News from the Front and Views from the Back (PDF)

CREN Certification Authority

• FAQ from CREN and the Digital Library Federation on PKI (pdf format)
• Sample CREN digital certificate

Governmental Programmes

NIST PKI Program
NIST is currently concentrating on PKI architectures, security requirements for PKI components, and PKI-enabled applications. The PKI architecture work is divided between development of complex PKIs based on the bridge CA concept and theoretical modeling of PKI performance. The goal of NIST's security requirements work is a Common Criteria Protection Profile.
NIST is also pursuing XML digital signatures using PKI to verify the identity of the signer.

• Computer Security Resource Center
• NIST S/MIME Project's home page
• Digital signature guidance - September 2000
• PKI Documents
• Bridge Certification Authorities: Connecting B2B Public Key Infrastructures, September 2000, (Word or PDF Format)
• Certificate Issuing and Management Components Protection Profile, September 2000, DRAFT (PDF format only).
• Federal Bridge Certification Authority Policy DRAFT, October 2000 (Word or PDF Format)
• Federal Certificate Profile DRAFT, April 2000, (EXCEL 2000)
• Federal Directory Profile DRAFT, September 2000 (Word or PDF Format)
• Certificate and CRL Profile, 4 January 1999. In Microsoft Word (451 kbytes), PKZipped Word 95 (178 kbytes) or PDF (252 kbytes) format.
• PKI related links at NIST

Canadian Government Communications Security Establishment
GOC PKI Initiative

• Government of Canada Treasury Board PKI Documents Site
• GOC PKI X.509 Certificate and CRL Fields and Extensions Profile, October1999 (pdf)
• Certificate Policies

ITU: X.509 (2000)

• X.509, final draft texts for the 4th edition
• Presentations
• X.509 (2000): What's New? by Sharon
• X.509 (2000): 4th edition: Overview of PKI & PMI Frameworks by Sharon
• Attribute Certificate in the IETF by Stephen Farrell and Hoyt Kesterson
• X..509 Attribute Certificate and Privilage Management Infrastructure by Stephen Farrell and Hoyt Kesterson

Public-Key Infrastructure (X.509) (pkix)
http://www.ietf.org/html.charters/pkix-charter.html

Request For Comments (until 2001):

SS/MIME Mail Security (smime)
http://www.ietf.org/html.charters/smime-charter.html

An Open Specification for Pretty Good Privacy (openpgp)
http://www.ietf.org/html.charters/openpgp-charter.html

Request For Comments (until 2001):

XML Digital Signatures (xmldsig)
http://www.ietf.org/html.charters/xmldsig-charter.html

Request For Comments:

Digital Signature

• Digital Signatures: Software Industry Issues
• Digital Signature Law Survey (by countries and regions) by Simone van der Hof
• EFGA: Digital Signature Section
• Summary of international legislation
• Digital Signature Guidelines Tutorial from Amirican Bar Association
• Digital Signature Links by Juan A. Avellan
• General Usage for International Digitally Ensured Commerce (GUIDEC) at the International Chamber of Commerce (ICC)
• European Commission Legal Advisory Board: Digital Signatures and Encryption
• Digital Signature Initiative at W3C

Information and documents related to the European Directive for Electronic Signatures

• The European Commission: Media, Information Society & Data Protection: Electronic Signatures
• The European Electronic Signature Standardisation Initiative (EESSI) at ETSI
• Electronic Signatures (E-SIGN) Workshop at CEN (European Committee for Standardization)
• Electronic signatures and encryption at European Internet Forum

• Crypto Law Survey by Bert-Jaap Koops - Regulary updated
• "The Crypto Controversy A Key Conflict in the Information Society" by Bert-Jaap Koops
• European Cryptography Resources webpage
• World Cryptography Survey - February 1998
• American Bar Association Information Security Committee
• GPO Access to Databases, including the Federal Register, Congressional Bills, etc.
• DOC Export Administration Commercial Encryption Export Controls
• NRC Report: "Cryptography's Role in Securing the Information Society" - 1996
• Background documents on Digital Signatures at United Nations Commission on International Trade Law (UNCITRAL)
• Baker & McKenzie: Global E-Commerce Law
• S.761: Electronic Signatures in Global and National Commerce Act (US federal)
• Bill 88: Electronic Commerce Act, 2000 (Canada)

• Internet Law & Policy Forum (ILPF): CA Working Group
• PKI Task Group (Open Group)
• PKI Forum

The PKI Forum is an international, not-for-profit, multi-vendor alliance whose purpose is to accelerate the adoption and use of Public-Key Infrastructure (PKI) and PKI-based products and services.
• Internet Law & Policy Forum (ILPF)

The Internet Law & Policy Forum is dedicated to promoting global growth of e commerce by contributing to a better understanding of the particular legal issues which arise from the cross border nature of the electronic medium.

Additional information

Information resources on LDAP and related issues