HARICA Public Key Infrastructure
The HARICA Public Key Infrastructure (PKI) is a trusted third entity which certifies the identities of network users and servers affiliated with Academic and Research Institutions of the Hellenic Republic.
The HARICA PKI is a consortium between equal members that are Academic Institutions, Research Institutions and the Greek Research and Technology Network (GRNET) which is the Greek National Research and Educational Network (NREN) and began during the VNOC2 project (funded by GRNET through the Operational Program "Information Society"). HARICA is currently funded by the Greek Universities Network (GUNET). This service is available for the members of the Hellenic Academic and Research Institutions.
The HARICA PKI Goals
The main goal of HARICA is the deployment of an infrastructure for secure communication between the members of the collaborating Academic and Research Institutions.
The HARICA PKI :
- Implements a Public Key Hierarchy having root authority the HARICA Root Certification Authority, which collaborates with the other parties' Certification Authorities in Greece and abroad aiming at widening the network of trust.
- Issues -on behalf of its members- digital certificates for network servers, in order to secure the data exchanged with the network users.
- Issues -on behalf of its members- digital certificates for network users, which can be used to prove the identity of the users while using network services and to secure email communication.
Policies and Procedures
The HARICA PKI issues certificates to entities according to certain procedures included in the "Certificate Practice Statement" and must also comply with the "Certification Policies" of each Certification Authority.
Independent audit report
HARICA PKI has been audited by an independent auditor and was found to be fully compliant with the requirements of ETSI TS 101 456, ETSI TS 102 042 and CA/B Forum Baseline Requirements.
You may download the ETSI TS 101 456 and 102 042, CA/B Forum BR 1.2.5 latest audit report (year 2015). You may also download the ETSI TS 101 456 initial report in 2011, the ETSI TS 102 042 initial report in 2013, the ETSI TS 101 456 and 102 042 initial report in 2014, the CA/B Forum BR 1.1.5 initial report in 2013 and the CA/B Forum BR 1.2.3 initial report in 2014.
These reports are also available at the QMSCERT Website. Here is a link to the latest audit report:
- ETSI TS 101 456 initial report in 2011
- ETSI TS 102 042 initial report in 2013
- ETSI TS 101 456 and 102 042 initial report in 2014
- CA/B Forum BR 1.1.5 initial report in 2013
- CA/B Forum BR 1.2.3 initial report in 2014
In order to use the HARICA PKI as well as the collaborating Certification Authorities you must trust the HARICA Root Certification Authority.
Certificate Repository for HARICA PKI
All the issued certificates of the PKI service (Certification Authorities and end-users, servers certificates) can be obtained using the following link: Certificate Repository.
The certificates can also be found at an alternate secure webpage, certified by a trusted third party, according to section 6.1.4 of the HARICA Certificate Policy and Certification Practices Statement.