Introduction

Key Ceremony Introduction

[1] On the day of the ceremony, many people become involved in making the ceremony a success. The following identifies the tasks performed on the ceremony day, the time frame, the responsible party, and other participants involved in each task. The following table shows the responsibilities on the day of the Key Ceremony:

Time Frame Task Responsible Party Other Participants
30 minutes-1 hour before ceremony begins Key Access Component retrieval, Video camera setup Key Ceremony Administrator Key Access Component Holders, access personnel, Videographers
15 minutes before ceremony Final check of the ceremony room Key Ceremony Administrator
15 minutes before ceremony Customer briefing Digi-CAST2™ Consultant or Key Ceremony Administrator Customer
Start of ceremony Ceremony introduction Key Ceremony Administrator Key Ceremony Administrator, Key Access Component Holders, and other ceremony participants
During ceremony Create the customer’s CA(s) Key Ceremony Administrator Key Access Component Holders, witnesses, and customer (optional)
End of ceremony Ensure that all ceremony material is properly distributed Key Ceremony Administrator Key Access Component Holders and access personnel
Immediately after ceremony ends Ensure that the archive book and appropriate key management files are updated and stored Key Ceremony Administrator Access personnel Notary Public

After entering the room, follow these steps:

• Place the archive book on the Inventory table.
• Put the script on the table next to the workstation that will be used.
• Lay out all the storage media so it is visible to the fixed camera.
• Ensure that the Entry/exit Log Book is accessible to everyone.

Upon successful completion of the final check, the ceremony room is ready for the ceremony participants. Next, make sure all the participants are present and in their proper location. The participants should be arranged as follows:

• Position the videographer(s) behind the cameras.
• Seat witnesses next to the workstation where they can verify each step performed.
• Position the notary public or equivalent official and any other ceremony observers where they do not obstruct the view of the Key Access Holders and witnesses.

In preparing to start the ceremony, remember that you represent an organization in which your users must place a high degree of trust. To confirm that their trust in your organization is well placed, your every action must convey the preparation and care taken to ensure the highest possible level of security.

The introduction part of the Key Ceremony is not a scripted event. It is the responsibility of the Key Ceremony Administrator or Digi-Sign Digi-CAST2™ Consultant, to ensure that everyone in attendance understands what is happening at each stage of the ceremony.

At the onset of the ceremony, the Key Ceremony Administrator introduces the participants and sets the stage for the ceremony, covering the following points:

• Point out main features of the ceremony room. Explain that the ceremony facility is equipped with the workstations and other equipment that will be used in the Key Ceremony. And that the hardware includes smart cards, the HSM and the server with the Digi-CA™ installed.
• The Key Ceremony Administrator explains, that various commands and actions will be executed to perform the functions required for the ceremony. Remind the participants, that a function of the ceremony is to produce sufficient evidentiary materials to demonstrate, that proper practices are followed throughout the ceremony. Therefore, each ceremony step is witnessed, documented, and attested to.
• To provide additional documentation, ceremonies are videotaped and the Key Ceremony Administrator should explain, that the video(s) will always focuses on the Key Access Holders, smart cards and the other ceremony proceedings. Remind everyone, that the videotape records proprietary processes and copies of the recordings are not provided to anyone.