JGridstart/Certificate Authorities

From PDP/Grid Wiki
Revision as of 15:30, 21 April 2010 by Wvengen@nikhef.nl (talk | contribs) (add features)
Jump to navigationJump to search

jGridstart is ultimately deployed by certificate authorities that want to give users an easy way to request their user certificates on their local machine.

This page is very much a work in progress, but should provide an overview. Please contact the author if you want to deploy jGridstart.

jGridstart features

The most important features of jGridstart are:

  • Wizard-like interface for certificate management
  • Supports all major platforms: Windows, Mac OS X, Linux
  • Supports installation into many web browsers: Firefox, Internet Explorer, Opera, Safari, Konqueror, and more
  • Allows import/export from/to PEM and PKCS#12

Requirements for certificate authority

jGridstart is currently optimised for certificate authorities that have an manual step in processing certificate requests. This means that once a request is sent by a user, he has to wait until the certificate authority manually creates his certificate, which can take a couple of days. (Although work is being done to connect to Confusa, an online certificate authority.)

The following is required to use jGridstart:

  • Interface for submitting requests and retrieving issued certificates (usually a RESTful HTTP interface)
  • List of registration authorities and organisations where the user can go for identity verification
  • Website hosting jGridstart and a customized JNLP file.

Also see README for more information.