The Queensland Government Public Key Infrastructure Policy Authority (QGPKIPA) decided to cease the QGPKI in August 2013 following a review of the PKI policy and position for Queensland Government. The QGPKIPA formed the view that the increased maturity, capability and capacity within the market place to provide a range of alternative approaches to authentication and authorisation had reduced the benefits of a whole-of-government PKI approach.
CITEC, Queensland Government's information and communication technology (ICT) service provider, has been authorised to maintain the minimum capability to support existing customers until such time as they can cease reliance on existing QGPKI infrastructure.
The Queensland Government will continue to make the following documentation and certificate revocation lists (CRLs) publically available while some Queensland Government agencies rely on this service. When this service is no longer relied upon, documentation will only be available in the QGEA Knowledge base on the QGCIO Portal for historical reference.
Policy and Practice
- Certificate Policy provides a standard set of provisions to define the Certificate Policy within the Queensland Government Public Key Infrastructure (QGPKI) and provides obligation and liability information.
- Certification Practice Statement describes the practices followed by the Certification Authority in issuing, renewing, re-keying or revoking certificates.
- Root Certificate Policy applies to the Queensland Government Root Certification Authority (please note this document is available in draft only).
- Subscriber Agreement sets out the terms and conditions of an agreement made between the Certification Authority Owner and the Subscriber. The subscriber is an entity, whether an individual or organisation, to whom Certificates are issues.
- Relying Party Agreement sets out the terms and conditions of an agreement made between the Certification Authority Owner and the Relying Party. The Relying Party is an individual or an organisation, which:
- relies on the binding of the Public Key to the Distinguished Name of a Subject in a Certificate to the level of certification assurance stated in within that Certificate; or
- distributes the Certificate of the Certification Authority as part of a PKI-aware application, or through any other means; or
- distributes a PKI-aware application that accepts the Relying Party Agreement on the behalf of an end user of that application, or bypasses the requirement for such acceptance via some other mechanism.
Certificate Authority (CA)
The QGPKI continues to provide Root CAs in the following environments.
Agencies seeking assistance with QGPKI services should contact PKI-Services@citec.com.au.
For general enquires email firstname.lastname@example.org.
© The State of Queensland (Department of Science, Information Technology and Innovation). The materials published on this site are protected by copyright law. If you have a copyright enquiry or a request for permission please contact us at email@example.com.