Public Key Infrastructure Home /
CAC Lab /
GDS-JEDS Lab /
PKE Lab /
PKI Lab
Acronyms /
Frequently Asked Questions /
Online Resources /
POCs /
Request for Information /
Terms and Definitions
Application Testing / External Certification Authority Testing / Online Certificate Status Protocol Responder Testing / DoD PKI Interagency/Partner Interoperability Testing
| Web Site | Corestreet, Ltd. |
|---|---|
| Status | CERTIFIED - The certification letter is available on the JITC Joint Interoperability Tool web page. A JIT account must be requested to obtain access to the certification letters. |
| Date Certified | December 2004 |
| Type/Supported Functions | Online Certificate Status Protocol Responder. |
| Operating Systems Supported | Microsoft Windows 2000 Server Service Pack 4, Microsoft Windows 2000 Professional, RedHat Linux 9, Sun Solaris 8 |
| Associated Software | Microsoft SQL Server 2000, Mozilla 1.0.2, Microsoft Internet Explorer 6.0, Microsoft IIS 5.0, Netscape Communicator 4.7, Netscape Directory Server 5.1 , OpenSSL 0.9.7e, PostgreSQL Database |
| Common Access Card Information | Not Tested. |
| Application Description | CoreStreet RTC VA 4.0 is an Online Certificate Status Protocol Responder consisting of two components. The RTC Authority holds the private key for OCSP signing. It is in a secured location and is optionally offline. The RTC Responder holds no private key and can be unsecured. The RTC Authority retrieves Certificate Revocation Lists (CRLs) from designated sources and pre-generates signed responses in the form of validation proofs based on the entries in the CRLs. The validation proofs are signed with the private key of the RTC Authority. The RTC Responder (or multiple RTC Responders) retrieves the validation proofs from the RTC Authority and uses them to provide the status for a single certificate or list of certificates to Relying Parties. The validation proofs can alternatively be distributed via out-of-band means in bandwidth constrained environments. Responses indicating a status of Good or Revoked are signed, while responses indicating a status of unknown are not signed. This description was provided by the vendor. |