PKI Interoperability Models (February 2005)
The European Commission is making some of the most recent moves to promote PKI interoperability. The IDABC (Interoperable Delivery of pan-European eGovernment Services to Public Administrations, Businesses and Citizens) Programme is working on a Bridge/Gateway CA project, beginning with a feasibility study commissioned in 2001 and published in July 2002, with a progress note on Trust List Usage Recommendations in September 2003.
The feasibility study canvassed five general PKI interoperability models:
- Validation Authority (VA);
- Mesh (cross-certification);
- Web/Internet Trust (white lists); and
However, it settled on its own model, dubbed the Modified BCA (Bridge Certification Authority) PKI, which combines the flexible management structure of the bridge model with the technical simplicity of trust lists and the option to use cross-certificates. This is discussed further below.
Additionally, in the second half of 2003, the EU’s Interdisciplinary Centre for Law & Information Technology issued a detailed report on The Legal and Market Aspects of Electronic Signatures. It outlined EU Member States’ activities in implementing the 1999/93/EC Directive, which required that electronic signatures be recognised as the legal equivalent of handwritten signatures.
 European Commission – DG Information Society, The Legal and Market Aspects of Electronic Signatures, 30 September 2003