- REQUIREMENT: The PKI shall verify that the prospective certificate subject possesses the private key that
corresponds to the public key in the certificate request before issuing a certificate, unless the public/private key pair
was generated by the PKI and never left the certificate issuance service.
- RATIONALE: A subject bringing forth his own public key should prove ownership of the public key.
- RATIONALE: A subject bringing forth his own public key should prove ownership of the corresponding private key.
The PKI may generate a key pair and associated public key, and later communicate the private key to the correct subject in a secure manner. This may notably be done for other components of the PKI itself needing public-key certificates. The same private key should not be owned by distinct subjects, including other services of the PKI; if the private key was generated by the PKI but already provided to the subject once, the subject can and should prove its ownership. This covers threats: T_GEN01 to T_GEN08 T.AuthorizationValidationProcessTampering, T.RegistrationTampering.
- APPLICABILITY: All use cases where the PKI has a certificate generation service, issuing public-key certificates.
