IdenTrust Accreditations

AICPA SOC certificate badge

Trust Service Requirements:
Detail operational effectiveness of systems to manage customer data based on five “trust service principles”—security, availability, processing integrity, confidentiality, and privacy.
Audit Description:
Annual audits to ensure data is securely managed to protect the interests of organizations and clients. SOC 2 replaces legacy SAS 70 reporting standard.
Supervisory Authority:
American Institute of Certified Public Accountants (AICPA)
Accreditation Body/Auditor:
BDO

Trust Service Requirements:
Adequacy and effectiveness of physical controls deployed by a Certification Authority (CA).
Audit Description:
Annual audit performed on IdenTrust’s physical management of IdenTrust CA services.
Supervisory Authority:
CPA Canada
Accreditation Body/Auditor:
BDO

Trust Service Requirements:
Direct Standard™ and requirements of the DirectTrust Security and Trust framework.
Audit Description:
Audit of RA services against a series of technical, physical, and operational criteria.
Supervisory Authority:
DirectTrust
Accreditation Body/Auditor:
DirectTrust

Trust Service Requirements:
Direct Standard™ and requirements of the DirectTrust Security and Trust framework.
Audit Description:
Audit of CA services against a series of technical, physical, and operational criteria.
Supervisory Authority:
DirectTrust
Accreditation Body/Auditor:
DirectTrust

Trust Service Requirements:
CA/B Forum “Baseline Requirements for the Issuance and Management of Publicly Trusted Certificates.”
Audit Description:
Annual audit performed on IdenTrust’s key management cycle management authority (CA) business practices disclosures and CA environmental controls supporting IdenTrust public and managed PKI CA services.
Supervisory Authority:
CPA Canada
Accreditation Body/Auditor:
BDO

Trust Service Requirements:
Code Signing Working Group’s Minimum Requirements for the Issuance and Management of Publicly Trusted Code Signing Certificates.
Audit Description:
Annual audit performed on IdenTrust’s key management cycle management authority (CA) business practices disclosures and CA environmental controls supporting IdenTrust public and managed PKI CA services.
Supervisory Authority:
CPA Canada
Accreditation Body/Auditor:
BDO

Trust Service Requirements:
CA/B Forum “Guidelines for the Issuance and Management of EV Certificates.”
Audit Description:
Annual audit performed on IdenTrust’s key management cycle management authority (CA) business practices disclosures and CA environmental controls supporting IdenTrust public and managed PKI CA services.
Supervisory Authority:
CPA Canada
Accreditation Body/Auditor:
BDO

Trust Service Requirements:
CA/B Forum Network and Certificate Systems Security Requirements
Audit Description:
Annual audit performed on DigiCert’s Network and Certificate Systems Security compliance against the CA/B Forum Baseline Network Security Requirements.
Supervisory Authority:
CPA Canada
Accreditation Body/Auditor:
BDO

Trust Service Requirements:
CA/B Forum “Guidelines for the Issuance and Management of S/MIME Certificates.”
Audit Description:
Annual audit performed on IdenTrust’s key management cycle management authority (CA) business practices disclosures and CA environmental controls supporting IdenTrust public and managed PKI CA services.
Supervisory Authority:
CPA Canada
Accreditation Body/Auditor:
BDO