The UC Davis campus Certificate Authority runs on a Hewlett-Packard K-200 server. The server runs HPUX 10.20. Netscape Certificate Server version 1.03 is used for the CA. The server hardware is managed by the Information Resources unit of Information Technology. The CA software is managed by the Distributed Computing Analysis and Support unit of Information Technology.

Certificates are issued automatically, based on successful authentication to the campus Kerberos system. Public keys are published to the campus LDAP directory. Certificate revocation is currently done only manually. However, directory entries for individuals no longer associated with UC Davis are automatically removed on a nightly basis.

The attribute server is a Netscape Directory Server 3.11, running on a Sun Sparc Ultra 2 server with Solaris 2.6. The server is managed by the Information Resources unit of Information Technology. Content of the attribute server is updated nightly for additions, modifications and deletions. The database of record is called Mothra, and is a separate Oracle database system. Information from the Mothra database is published into the attribute server.

Immediate projects;

• testbed project with UCD and UCSD libraries
• document user procedures for obtaining certificates
• improve mapping of UC NetID to campus data (currently at 53%)
• develop automated certificate revocation mechanism