We can help you with level of trust issues
Not every organization needs a certificate policy (CP) or certificate practice statements (CPS), but the best secured and managed PKIs usually do. Public-facing organizations as well as those hoping to connect their PKI and identities to other organizations will most likely need them too. It is often a prerequisite for joining the federal bridge, university bridges as well as many medical organizations.
We can help you understand what these documents are, who needs them and why you would benefit from creating and maintaining them. We can show you what should go into a CP/CPS and how it will influence your PKI design. We can work with you to determine your policy needs and what internal and external requirements may be applicable. Where appropriate, we will work with your legal team to help craft the proper CP and CPS for your organization.