This Certificate Policy (CP) addresses the requirements for the External Certification Authorities (ECAs). ECAs issue DoD approved PKI certificates to Subscribers who have a need to conduct business primarily with the government.
One aspect of the ECA program is the ability to escrow and recover
private keys from key encipherment (or key exchange) public/private key
pairs. This document describes the procedural and technical security
controls that should be in place in order to operate the key escrow and
recovery system securely.
This paper describes best practices for protecting ECA software based
certificates and private keys during enrollment and usage of the
This document provides a summary of the Certification Practice Statement (CPS) for the ECA Root CA.
Instructions for installing the ECA CA certificates into popular browser versions.