CPS Section 8: Use of Certificates

This section addresses the rights and obligations of the entities whose rights and obligations are intended to be controlled by this CPS (see definition of "parties") regarding the use of digital signatures and digitally signed messages corresponding to VeriSign-issued certificates.

The parties (IA and the parties who are "users" of the certificate, i.e., the subscriber and the relying parties), are hereby notified of the following rules governing the respective rights and obligations of the parties among themselves, which are also deemed to be agreed by the parties, effective (i) upon publication of this CPS in the case of the IA; (ii) upon submission of an application for a certificate, in the case of an applicant or subscriber; and (iii) upon reliance of a certificate or a digital signature verifiable with reference to a public key listed in the certificate, in the case of a recipient of a certificate or a relying party.

8.1 Verification of Digital Signatures

8.2 Effect of Validating an End-User Subscriber Certificate

8.3 Procedures Upon Failure of Digital Signature Verification

8.4 Reliance on Digital Signatures

8.5 Writings

8.6 Signatures

8.7 Security Measures

8.8 Issuing Certificates

8.1 Verification of Digital Signatures

Verification of a digital signature, is undertaken to determine that (i) the digital signature was created by the private key corresponding to the public key listed in the signer's certificate and that (ii) the associated message has not been altered since the digital signature was created.

Such verification shall be undertaken in a manner consistent with this CPS, as follows:

• Establishing a certificate chain for the digital signature - A digital signature shall be verified with regard to a successful confirmation of certificate chain.
• Ensuring that the identified certificate chain is the most suitable for the digital signature - It is possible to have more than one valid certificate chain leading from a given certificate to an acceptable root (such as through cross-certification among other possibilities). If there is more than one certificate chain to an acceptable root, the person verifying the digital signature may have various options in selecting and validating the certificate chain. For instance, a "higher-trust" PCA may have been certified by a "lower trust" PCA. In this case the person verifying the digital signature may prefer to use a certificate chain terminating in the higher-trust PCA rather than the lower-trust PCA, or the VR.
• Checking the VeriSign (or other) repository for revocation or suspension of certificates in the chain - The recipient must determine if any of the certificates along the chain from the signer to an acceptable root within the PCS has been revoked or suspended, because a revocation or suspension has the effect of prematurely terminating the operational period during which verifiable digital signatures can be created. This may be ascertained in two different ways. The VeriSign repository may be queried for the most up-to-date revocation status. Alternatively, CRLs may have been provided in the certificate chain. These CRLs may be used to determine the revocation status of certificates in the chain.
• Delimiting data to which digital signatures are attached - In order to verify a digital signature, it is necessary to know precisely what data has been signed. In the case of public key cryptography standards (PKCS), a standard signed message format is specified to accurately denote the signed data.
• Indicating digital signature time and date of creation - In order for a digital signature to support nonrepudiation, the data to which the corresponding digital signature is attached must include, or reference, a time stamp. The time stamp shall reflect the time at which date and time the digital signature is affixed.
• Establishing the assurances intended by its signer - Various technical means may be used to determine the purpose (or meaning) of the digital signature intended by its signer. In formal protocols (such as EDI), digital signatures are classified as specified security services with defined semantics so as to convey their precise meaning. The verifier should also determine whether the certificate is normal or provisional.
• Ensuring that all certificates in the chain authorize use of an end-user subscriber private key - An IA may limit the purposes for which a private key corresponding to a certificate it issues may be used. Such limitations are indicated or incorporated by reference in the certificate and provide a means to warn recipients of situations for which reliance upon the certificate would not be considered reasonable. Persons validating certificates must inspect certificate contents for such warnings and limitations to ensure that no certificate in the chain denies appropriate use of an end-user subscriber certificate.
• Confirmation of a certificate chain - Each IA is certified by a superior IA (except for the VR or other root, which has self-signed public key) and thus inherits the trust associated with its superior IA. Each IA is presumed to be at least as trustworthy as its superior IA. Confirmation of a certificate chain is the process of validating a certificate chain and subsequently validating an end-user subscriber certificate.

8.2 Effect of Validating an End-User Subscriber Certificate

A digital signature is binding against its maker if it (i) was created during the operational period of a valid certificate, (ii) such digital signature can be properly verified by confirmation of certificate chain (iii) the relying party has no knowledge or notice of a breach of the requirements of this CPS by the signer, and (iv) the relying party has complied with all requirements of this CPS.

THE USE OF CERTIFICATES DOES NOT CONVEY EVIDENCE OF AUTHORITY ON THE PART OF ANY USER TO ACT ON BEHALF OF ANY PERSON OR TO UNDERTAKE ANY PARTICULAR ACT. VERIFIERS OF DIGITALLY SIGNED MESSAGES ARE SOLELY RESPONSIBLE FOR EXERCISING DUE DILIGENCE AND REASONABLE JUDGMENT BEFORE RELYING ON CERTIFICATES AND DIGITAL SIGNATURES. A CERTIFICATE IS NOT A GRANT FROM AN IA OF ANY RIGHTS OR PRIVILEGES, EXCEPT AS SPECIFICALLY PROVIDED IN THIS CPS.

8.3 Procedures upon Failure of Digital Signature Verification

A person relying on an unverifiable digital signature assumes all risks with regard to it and is not entitled to any presumption that the digital signature is effective as the signature of the subscriber under CPS Sections 8.4-8.6.

8.4 Reliance on Digital Signatures

A recipient of a message signed by a digital signature of the subscriber may rely upon that digital signature as binding against the subscriber if:

(i) the digital signature was created during the operational period of a valid certificate and it can be verified by referencing a validated certificate chain, and

(ii) such reliance is reasonable under the circumstances. If the circumstances indicate a need for additional assurances, the relying party must obtain such assurances for such reliance to be reasonable.

Additionally, the verifier should consider the class of certificate and the state of a certificate (normal or provisional). The final decision concerning whether or not to rely on a verified digital signature is exclusively that of the verifier.

8.5 Writings

A message bearing a digital signature verified by the public key listed in a valid certificate is as valid, effective, and enforceable as if the message had been written and signed on paper.

8.6 Signatures

Where a rule of law or applicable practice requires a signature or provides for certain consequences in the absence of a signature, that rule is satisfied in relation to a message by a digital signature affixed by a signer with the intention of signing a message and subsequently verified by reference to the public key listed in a valid certificate.

8.7 Security Measures

Any person using or relying upon a VeriSign PCS-issued certificate in conjunction with a message shall apply reasonable security measures to the message to provide message authentication and, as required, to support data confidentiality.

8.8 Issuing Certificates

Only authorized IAs may issue certificates.

Go to Next Chapter

Return to CPS Table of Contents

COPYRIGHT © 1997 VERISIGN, INC.

ALL RIGHTS RESERVED