Revision as of 01:42, 15 January 2026

Certificate class

A CA-designation (e.g., "class 0" or "class 1") indicating how thoroughly the CA checked the validity of the certificate. Per X.509 rules, the "class" should be encoded in the certificate as a CP extension: the CA can insert an object identifier (OID) that designates the set of procedures applied for the issuance of the certificate. These OIDs are CA-specific and can be understood only by referring to the CA's Certification Practice Statement.

Source: NIST SP 800-57 Part 2 Rev.1 | Category:

Revision as of 00:12, 15 January 2026 view source imported>Unknown user No edit summary		Revision as of 01:42, 15 January 2026 view source imported>Unknown user No edit summary Newer edit →
Line 1:		Line 1:
	{{LanguageHeader\|en}}		{{LanguageHeader\|en}}
	{{CyberTerm\|definition=A CA-designation (e.g., "class 0" or "class 1") indicating how thoroughly the CA checked the validity of the certificate. Per X.509 rules, the "class" should be encoded in the certificate as a ~~CP extension~~: the CA can insert an object identifier (OID) that designates the set of procedures applied for the issuance of the certificate. These OIDs are CA-specific and can be understood only by referring to the CA's Certification Practice Statement.\|source=NIST SP 800-57 Part 2 Rev.1}}		{{CyberTerm\|definition=A CA-designation (e.g., "class 0" or "class 1") indicating how thoroughly the CA checked the validity of the certificate. Per X.509 rules, the "class" should be encoded in the certificate as a CP extension: the CA can insert an object identifier (OID) that designates the set of procedures applied for the issuance of the certificate. These OIDs are CA-specific and can be understood only by referring to the CA's Certification Practice Statement.\|source=NIST SP 800-57 Part 2 Rev.1}}