Page tree
Skip to end of metadata
Go to start of metadata
Target release

Release 1.1

Document owner


The goal is to provide a reliable, secure and timely method for RSEs to download certificates.

Background and Strategic Fit

The download will include the RSE application certificate, a local certificate chain file (LCCF), and a local policy file (LPF). The RSE will first attempt to download a LCCF (containing the PCA certificate chain required to validate the application certificate) and a LPF and process both LCCF and LPF to ensure that it is able to interpret certificates generated by the SCMS correctly. The RSE will then attempt to download the RSE application certificate.  


Process Steps

  1. RSE downloads the Local Policy File (LPF) and the Local Certificate Chain File (LCCF), as before in Step 13.1: Request RSE Application Certificate
    1. If there is an updated LCCF, RSE applies all changes to its trust-store (necessary for PCA Certificate Validations)
    2. If there is an updated LPF, RSE applies those changes. If those changes include changes to request parameters, RSE must skip this use case and follow Step 13.1: Request RSE Application Certificate.
  2. RSE downloads application certificates using the API documented in RA - Download Application Certificate

Error Handling 

The RSE will abandon further interactions with the RA after a certain number of failed communication attempts resulted in errors.


Key Status Summary Description justification notes Component/s

Use Case 13.3 - Requirements