HvS Public Key Infrastructure

HvS-Consulting AG operates a Public Key Infrastructure (PKI). By means of this infrastructure, HvS employees receive personal certificates and thus the possibility for a secure exchange of e-mails or secure access to HvS resources Customers receive company-related certificates for the use of IS-FOX services.

Introduction

Management of certificates is always required when communication links have to be secured with the help of asymmetric, cryptographic procedures. The security of the entire system is based on the security of the private keys and the validity of the associated certificates.

The meaningful use of certificates requires a public key infrastructure (PKI), which, in addition to the technical infrastructure, also includes services and guidelines for the secure operation of the PKI.

Certificate Policy & Certificate Practice Statement

The HvS PKI Certificate Policy (CP) and the Certificate Practice Statement (CPS) for the Root CA and the two Issue CAs are available here for download.

Certificate Policy

Certificate Practice Statement

Contact:
HvS-Consulting AG
pki@hvs-consulting.de 

Certificates & revocation lists of the HvS PKI

The HvS PKI consists of three certification authorities. Their exact names and certificate fingerprints are listed here:

HvS Root-CA I (Certificate, Revocation list)

Distinguished Name: CN = HvS Root-CA I, O = HvS-Consulting AG, C=DE
Certificate issuer: identical, since self-signed root certificate
Certificate period: 22.01.2013 – 22.01.2033
SHA-256 Fingerprint: ce 3d 42 a9 01 6f 94 f9 82 da 88 73 0a be bf ed 57 2f cd c9

HvS Issue-CA I (Certificate, Revocation list)

Distinguished Name: CN = HvS Issue-CA I, O = HvS-Consulting AG, C=DE
Certificate issuer: HvS-Root-CA-I
Certificate period: 22.01.2013 – 22.01.2028
SHA-256 Fingerprint: f9 a4 c7 1a 81 27 13 cf d1 91 f5 11 59 d8 e9 35 6c 1a b7 18

IS-FOX Issue-CA I (Certificate, Revocation list)

Distinguished Name: CN = IS-FOX Issue-CA I, O = HvS-Consulting AG, C=DE
Certificate issuer: HvS-Root-CA-I
Certificate period: 22.01.2013 – 22.01.2028
SHA-256 Fingerprint: ad fc 73 ca 9f c1 11 47 f2 e9 e3 ac e4 29 a5 79 66 c2 1a a8