Custom CA On-Boarding Training Course

            As Thailand transitions into a digital economy and society, electronic transactions are becoming increasingly prevalent. Digital trust has emerged as a critical factor in ensuring the security and acceptance of online communications and transactions across government, private sector, and public services. A trustworthy and internationally recognized system is essential.

            The National Root Certification Authority of Thailand (Thailand NRCA) has developed a practical in-house training course to enhance knowledge, understanding, and essential skills for organizations and personnel aiming to become Certification Authorities (CAs) in accordance with international standards such as WebTrust.

Target Audience

1. Organizations interested in becoming Subordinate Certification Authorities (Subordinate CAs)

Expected Outcomes

1. Comprehensive coverage of both theoretical and practical aspects, delivered by experienced professionals in compliance with WebTrust standards
2. Guidance on establishing and managing a CA effectively and in alignment with international requirements
3. In-depth knowledge in PKI, cybersecurity, digital identity, trust services, and digital trust
4. Enhanced organizational credibility and increased confidence among partners and clients, both domestically and internationally

Course Details

Day 1: Foundational Knowledge, Standards, and Regulations for Certification Authorities

Participants will be introduced to Thailand NRCA and the components of PKI. The session will cover the roles of CAs, the process of establishing and managing a CA, and the annual audit requirements.

1. Thailand NRCA Project
2. History, landscape, and global players in the CA business
3. General Overview
4. Cryptographic concepts, certificate types, and EKUs
5. Single-purpose CAs, CP and CPS, key generation ceremony, audits and assessments
6. Elements of a CA: CA, RA, VA
7. Management systems and trusted roles
8. European standards: eIDAS and chain of trust
9. WebTrust Audits
10. Audit steps and WebTrust seals
11. ETDA Recommendations on CA
12. Subscriber profiles, remote signing, document signing, and digital identity

Day 2: Policies and Practices for Certification Authorities

            This session focuses on Certificate Policy (CP) and Certification Practice Statement (CPS) documents, based on CA/B Forum and Trust Store requirements. Participants will also explore the CA lifecycle through the CA Maturity Model to assess readiness and growth.

1. CP/CPS
2. Relationship between CP and CPS, sources of requirements
3. Trust Store Requirements
4. Common CA Database (CCADB) and the inclusion process
5. CA Maturity
6. SIM3 approach, maturity levels, and parameter sources

Course Conditions

1. Duration: 2 days
2. Language: Thai and English
3. Format: In-house training, organized by the participating organization or coordinated by Thailand NRCA
4. Certificate: Participants will receive a certificate of completion issued by Thailand NRCA

📌 Interested in joining? Click here!

For more information, please contact:

Mr. Phanudet Sukphong

Tel: +66 2 123 1234 #91231

Email: [email protected]