tScheme Website, NPIA

Index of documents supporting the Grant of Approval to NPIA’s Root CA service.

What the tScheme Approved Service Mark signifies.

Approved Service - Service Description

Approval Profiles used in the assessment:

Base Approval Profile	tSd0111	3.00

Approval Profile for Certificate Generation	tSd0104	3.01

Approval Profile for Certificate Dissemination	tSd0105	3.01

Approval Profile for Certificate Status Management	tSd0106	3.01

Back to Grant details

What the tScheme Approved Service Mark signifies

When a trust service carries the tScheme Mark, you can be secure in the knowledge that:

the service has been thoroughly evaluated against rigorous criteria by independent experts;
the service provider has agreed to keep to these criteria;
the service provider subscribes to the tScheme Code of Conduct;
the service provider has agreed to act promptly and fairly to remedy faults.

For each service, tScheme approval is regularly reviewed and may be withdrawn.

This Grant of Approval does not affirm or endorse any claims of conformance to standards or adherence to guidelines not explicitly listed as forming part of the service assessment.

top

Approved Service - Service Description

The subject service of this Grant of Approval is the Police Service PKI Root Certificate Authority (Root CA).

The Police Service PKI is an infrastructure that provides trust services to the Police Forces of England, Wales and Northern Ireland, as well as organisations from the wider Criminal Justice community.

The Police Service PKI is governed by the Police PKI Policy Management Authority (P3MA). The Police Service PKI Root CA is operated by the NPIA on behalf of the P3MA.

The Police Service PKI Root CA is the top-most trust point within the Police Service PKI at the national level, from which other Certificate Authorities are vested.

The Police Service PKI Root CA is a core component of the NPIA Identity and Access Management (IAM) initiative, which aims to provide strong identity assurance of police workers to enable secure, controlled access to national and regional police information systems.

The Police Service PKI Root CA primarily issues Subordinate CA Certificates and Cross-Certified CA Certificates to Police organisations. The Police Service PKI Root CA will also issue Cross-Certified CA Certificates to PKI hierarchies from partner organisations, on approval of the P3MA.

All certificates signed by the Police Service PKI Root CA are issued under the control and approval of the P3MA. Subscribing organisations must demonstrate compliance with defined criteria and be granted approval by the P3MA before being issued with a certificate by the Police Service PKI Root CA.

top

The tScheme Code of Conduct

Participants in the electronic trust services industry strive:

to act in an honest, fair, reasonable and trustworthy manner;

not to bring electronic trust services into disrepute;

to provide clear information about what each electronic trust service provides, including limitations and exclusions, to those who rely on that service;

to meet service commitments and obligations;

to be proactive in identifying and correcting faults and deficiencies in electronic trust services;

to operate in accordance with appropriate standards;

to act promptly in resolving complaints relating to electronic trust services.

top

Sub Headings

European Directive

Accessibility