K
K
Kirill Ivanov2015-08-07 07:30:15
System administration
Kirill Ivanov, 2015-08-07 07:30:15

Has anyone been involved in their own center for issuing SSL certificates?

I became interested in the issue of organizing my own certification center based on the provider.
Is it possible to open such a center here, if possible, in which direction to dig?

Answer the question

In order to leave comments, you need to log in

5 answer(s)
S
Sergey, 2015-08-07
@efreeze

not worth it. Typically, providers have a level of security equal to the level of secondary education of working professionals. which is low. alas). and for certification, a sneeze cannot be done in the wrong room. substitute customers who trust you

V
Vitaly Pukhov, 2015-08-07
@Neuroware

Just recently I came across this question, if briefly it is possible. You can start with:
habrahabr.ru/post/262151
forum.ubuntu.ru/index.php?topic=78433.0

O
other_letter, 2015-08-07
@other_letter

Service in the Russian Federation will, if delivered correctly, be in demand.
The question is in money, in fact, they will need a lot.
Judge for yourself:
1. Study or seek advice on the topic in the resolution of legislative regulation
2. Hire specialists. They will need their own, it will be expensive to rent.
3. Construction of a data center. The equipment is certified, the software too, everything is documented and so
on. 4. Registration of a ready-made or at least almost ready-made service, certification, licensing.
I will not say further, here to all sorts of managers and promoters.
How much it will cost - I can’t count, but a lot. And the profit will go only after all this. Again, I have no idea about the size of the market.
But the fact that there is a market and interest is for sure. Whether it will be enough for you - I do not know.

V
Vlad Zhivotnev, 2015-08-07
@inkvizitor68sl

It is easy to make your own certification authority (there are a lot of manuals), but in order for your CA to get into the necessary repositories out of the box (Windows, apple, firefox, ca-certificates package), you need to have about $50kk to pass all the certifications.

Z
zvl, 2015-08-13
@zvl

If you don’t plan to get certified in government agencies, you can deploy Cryptopro CA, it’s not certified like it was “take it and put it”. If you plan to get certified, then you will need a lot of money. CAs mainly deploy state bodies for interdepartmental studies, for which a small provider might need a certified CA, it’s hard for me personally to imagine. In addition to deployment and certification, do not forget that you will have to undergo regular certification by regulatory agencies, and this is also a lot of money.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question