WARNING! Gitlab maintenance operation scheduled for Thursday, 18 June between 19:00 and 20:00 (CET). During this time window, short service interruptions (less than 5 minutes) may occur. Thank you in advance for your understanding.
@@ -887,29 +887,29 @@ The C-ITS PKI shall provide the different services required by the RCA, EC and A
| A\_Canonical Public Key | Public key generated by ITS-Station and used by the EA to verify EC request signature. | Integrity |
| A\_Data encryption key | AES key used to encrypt requests and responses messages data. | Integrity, confidentiality |
| A\_CA private keys | Private keys corresponding to the public keys contained in CA certificates issued by the PKI system. These keys are used for signature/encryption mechanisms. | Confidentiality, integrity |
| A\_CA Certificates | This includes the root CA self-signed, EA, AA, and MA certificates generated by the root CA. | Availability |
| A\_Enrolment Credential (EC) | EC is a certificate that contains a unique name, a public key, and other attributes. | Integrity |
| A\_Authorization Ticket (AT) | AT is a pseudonym certificate that does not contain any identification information but public key(s) and other attributes. | Integrity |
| A\_TLM certificate | Self-signed certificate managed by EU | Availability |
| Station registration data | | | |
| | ------------------------------------ Station registration data ------------------------------------ | |
| A\_Canonical ID | This information is stored at initial registration of the ITS station under the responsibility of the manufacturer. The canonical ID shall contain a substring identifying the manufacturer or operator to make uniqueness of this identifier possible. | Integrity, confidentiality |
| A\_ITS-S Profile | The profile information for the ITS-S that may contain an initial list of maximum appPermissions (ITS-AIDs with SSPs), region restrictions, etc., which may be modified over time. | Integrity |
| A\_Tag | HMAC-SHA 256 of the keys to be certified. | Confidentiality, integrity |
| A\_HMAC key | Key used to compute Tags sent with AT requests. | Confidentiality, integrity, availability |
| A\_CA Network addresses | URL used to communicate with the CA. | Integrity, availability |
| A\_DC network address | URL used to communicate with the DC. | Integrity, availability |
| A\_CPOC Network address | URL used to communicate with the DC. | Integrity, availability |
| Policies | | | |
| A\_Certificate Policy configuration data | Configuration data defining the role and duties of the PKI entities, including definition of parameters for: issuance, publication, archiving, revocation, renewal. This includes the certificate profiles. | Integrity, availability |
| A\_CRL | This list contains all information about revoked entities and needs to be protected from any malicious change. We need to assure the integrity of this list as defined in (1). | Integrity, availability |
| A\_CTL | This list contains all information about trusted entity certificates (CA), using the format and properties as defined in (1). | Integrity, availability |
| A\_ECTL | This list contains all information about root CA certificates (certificates, URL to access the CPOC, ...) as defined by (1). | Integrity, availability |
| A\_Misbehaviour Report (MR) | Reports sent by the ITS-S to the MA to provide information regarding a possible misbehaving ITS-S (8). | Integrity, availability |
