GB/T 28447-2012

Active

Information security technology - Specification on the operation management of a certificate authority

信息安全技术电子认证服务机构运营管理规范

Standard Type

GBT

ICS

35.020

CCS

L80

Status

Active

Issue Date

2012-06-29

Implementation

2012-10-01

Centralized Committee

国家标准委

Issuing Authority

中华人民共和国国家质量监督检验检疫总局、中国国家标准化管理委员会

Application Summary AI generated

This standard specifies the operational management requirements for electronic certification service institutions (Certificate Authorities, CAs) in China, covering areas such as security management, business continuity, and audit procedures. It is applied by CAs to ensure the secure issuance, management, and revocation of digital certificates used in electronic signatures, online transactions, and identity authentication. The standard is primarily used in e-government, e-commerce, and other digital trust environments to maintain the reliability and legal validity of public key infrastructure (PKI) systems.

Related Standards

GB/T 18903-2002 Information technology--Quality of service:Framework GB/T 18811-2002 Basic glossary of electronic commerce GB/T 5271.9-2001 Information technology--Vocabulary--Part 9:Data communication GB/T 5271.8-2001 Information technology--Vocabulary--Part 8:Security GB/T 5271.28-2001 Information technology--Vocabulary--Part 28:Artificial intelligence--Basic concepts and expert system GB/T 5271.27-2001 Information technology--Vocabulary--Part 27:Office automation GB/T 17964-2000 Information technology--Security techniques--Modes of operation for an n-bit block cipher GB/T 17900-1999 Security requirements for proxy server

Transparency note: The application summary and key sentences on this page were automatically generated by AI from the standard's original text. This content has not been human-verified and should not be used for compliance or regulatory purposes. Always refer to the official standard document from the issuing authority.