Goals

Revoke an RA certificate from the SCMS System.

Background and Strategic Fit

The Technical Component of the SCMS Manager (TCotSCMSM) determines that an Registration Authority (RA) needs to be revoked, generates a certificate revocation message listing the RA certificate, and distributes it to all affected components. Relevant PCAs are instructed to mark the affected RA as untrusted.

The TCotSCMSM must ensure that those PCAs have at least one other RA from which to receive individual certificate requests for pseudonym certificates.

DCM(s) must no longer configure new end-entity devices to contact that RA to request pseudonym certificates.

All components and entities that receive the revocation notification also must cease to trust immediately any future message that was signed by the RA.

All end-entity devices that normally contact the revoked RA should obtain another RA’s certificate and address from which to request pseudonym certificates as soon as possible (the SCMS Manager may set performance requirements for how quickly this must happen).

Assumptions

  • Messages and procedures need to be defined, potentially using existing data structures defined in IEEE 1609.2 for CA revocation.
  • These data structures only support the case where the CRL is signed by a single signer.
  • If components use any other authentication mechanism, such as symmetric authentication or multiple signatures, the data structures, if used, would have to be redefined.

Attachments:

Untitled16.png (image/png)