Public Key Infrastructure Home Page


Public Key Infrastructure Home / CAC Lab / GDS Lab / PKE Lab / PKI Lab / DoD PKI CCEB/Partner Interoperability Testing

Acronyms / Frequently Asked Questions / Online Resources / POCs / Request for Information / Terms and Definitions

Obtaining JITC Issued Test Certificates / Obtaining Test Common Access Cards / PKI Lab Environment

Common Access Card (CAC) Enterprise Testing Overview

Global Directory Services (GDS) Overview

The GDS JITC Arizona Test Lab core mission is to provide testing support to IA42 Directory Services Branch and its customers as part of DISA GDS Program via a lab that is an exact replica of the Defense Enterprise Computing Centers (DECC) deployed operational GDS system.

The GDS JITC Arizona Test directly supports the GDS with operational configuration management and independent verification and validation testing of deploying GDS system and components.

JITC GDS provides NIPRNET based testing community an enterprise-wide PKI directory service that distributes Certificate Revocation Lists (CRL) and email public key encrypted certificates generated from the JITC PKI PMO test Certificate Authority (CA).

Public Key-Enabled (PKE) Application Testing Overview

Applications must be enabled to take advantage of the services a PKI offers. Without enabled applications, the infrastructure holds little value. It is essential that applications become enabled and utilize the infrastructure. However, enabling is a complicated task. Applications must be tested to ensure they are enabled correctly, and are interoperable with the DoD PKI.

The DoD PKI PMO established the Joint Interoperability Test Command (JITC) DoD PKE Certification Lab as an independent testing facility to perform interoperability testing on PKE applications. It is DoD policy that enabled applications be tested to ensure interoperability and compatibility with the DoD PKI. The lab supports this policy through the interoperability certification process.

The certification process is based on a master test plan containing all DoD PKE requirements and associated tests. This plan is used as a guideline for testing individual applications. Each PKE application is different and takes advantage of various DoD PKI services; therefore all the DoD PKE requirements may or may not be applicable to every application. JITC works individually with each application to analyze and determine which of the requirements and corresponding tests apply.

Public Key Infrastructure (PKI) Overview

The JITC PKI Test Certificate Lab provides test certificate services in support of DoD and commercial partners to help successfully deploy a fully interoperable PKI. The lab was established by DISA and the PKI PMO as the official test facility for the issuance of DoD PKI test certificates.

The JITC PKI enclave mirrors the configuration of the operational PKI enclaves at the Defense Enterprise Computer Centers (DECCs) in Oklahoma City and Chambersburg. This allows testing, development, and training to occur in an environment separate from the operational infrastructure yet with the same functionality. All software used by DoD PKI is tested at JITC before being installed at the DECCs. Configuration Management of the JITC PKI enclave is coordinated with the PKI PMO.

Customers of the PKI lab include:
  • Commercial and government developers testing their products.
  • Services and agencies training system administrators and end users.
  • JITC PKI test engineer performing application interoperability certification testing.
  • Commercial vendors demonstrating their products' interoperability with the DoD PKI.

Top of Page

  Last Revision: 02 Oct 13

Loading Footer...