Department of Energy

In order for the CAs to generate properly populated subjectKey Identifier fields, the Department of Energy (DOE), as well as the Prototype FBCA, followed a documented procedure to change their algorithms to match that of the respective CA. The cross-certification between the two CAs was successful upon each CA changing their subjectKeyIdentifier algorithm.

Once the DOE's firewall was configured to allow chaining on the correct port, the Prototype FBCA was chained to the DOE Internet Shadow directory without incident. Information from the DOE CA directory was posted into their online border directory (Peerlogic i500), using the same CygnaCom tools used by the FBCA OA.

The Federal PKI Policy Authority authorized the issuance of a cross-certificate to DOE in October 2003.

Page Last Updated: 10 Nov 2004