A Registration Authority (RA), is an organization that, with the approval of a Certification Authority, manages the requirements of electronic certificates.
Among other functions, the RAs are trained to determine the suitability of subscribers to the solicited certificates. Their main responsibility is to perform tasks of identification, authentication, processing and information of the obligations and rights of users.
ANF AC equips Registration Authority with specific equipment called AR Manager to perform their duties in accordance with the requirements established in the PKI. It also provides training to operators, evaluation and official accreditation. Registration Authorities are part of the National Proximity Network of ANF AC.
Within ANF AC's Public Key Infrastructure, there are two types of Registration Authority:
They are officially accredited entities, which have operators who have received the relevant training, and have passed the corresponding tests.
The RA operators perform the day-to-day requirements of the certificates. They verify the identity of the subscribers, take their date, digitize their documents and assist the subscribers, all in accordance with the provisions of the Certificate Practice Statement of ANF AC.
We define two recognized Registry Authority modalities:
· Recognized RA Level 1
They are professional or business associations that manage the accreditations of its members as Recognized RA level 2.
In addition to the usual user identification and authentication functions, Level 1 Registration Authorities can coordinate and supervise a network of professional firms assigned to your organization.
Within its sector of activity and geographic scope, the Level 1 RA grants and revokes official accreditations. ANF AC puts at the disposal of these entities all the necessary resources for performing their functions.
· Recognized RA Level 2
They are professional offices offering their services to their customers and the public.
They are entities which, per valid legislation, have functions of public notaries.
Legal and Documentary Base
The Spanish Law 59/2003 on Electronic Signature provides the ability to Certification Authorities to collaborate with natural or legal persons in processing qualified electronic certificates.
The figure Registration Authority was defined for the first time in March 1999, RFC 2527 standard ( "Internet X.509 Public Key Infrastructure Certificate Policy and Certification Practices Framework", replaced by RFC 3647 ). It is also contained in the standard ETSI TS 101 862 ( "Qualified Certificate Profile").