next up previous contents
Next: Usage periods for the Up: Other Aspects of Key Previous: Other Aspects of Key   Contents

Public key archival

In principle all issued certificates are archived. Test certificates and certificates that upon generating them turn out to be faulty but that have not yet been distributed, are deleted without archiving them. Once the certificate reaches the world outside the CA signing machine, it can be revoked but not deleted.

David Groep