Key Management

There are five requirements to be satisfied:

1. Must comply with the Common Policy (Requirement 87)
2. All certificates issued will fall under the the id-CommonHW policy and id-CommonAuth policy (Requirement 88)
3. Certificate Revocation Lists (CRLs) must be issued every 18-hours (Requirement 89)
4. Certificates and CRLs will be distributed via the LDAP & HTTP (Requirement 90)
5. OCSP is required (Requirement 91)