U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.


We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

NISTIR 7924 (Draft)

Reference Certificate Policy (2nd Draft)

Date Published: May 2014
Comments Due: August 1, 2014 (public comment period is CLOSED)
Email Questions to: nistir7924-comments@nist.gov


Harold Booth (NIST), Andrew Regenscheid (NIST)


NIST announces the public comment release of second draft of NIST Interagency Report (NISTIR) 7924, Reference Certificate Policy. The purpose of this document is to identify a set of security controls and practices to support the secure issuance of certificates. It was written in the form of a Certificate Policy (CP), a standard format for defining the expectations and requirements of the relying party community that will trust the certificates issued by its Certificate Authorities (CAs).

NIST released the first draft of this publication in April 2013 and received extensive public comments. This revised draft incorporates changes requested by commenters, many intended to improve the security controls identified in the document, provide additional flexibility for CAs, and clarify ambiguities in the previous release.



certificate policy; digital certificate; certificate authority; public key infrastructure
Control Families

Identification and Authentication


Second Draft NISTIR 7924

Supplemental Material:
Comment Template (word)

Document History:
05/29/14: NISTIR 7924 (Draft)