For staff, employees and guests of the Helmholtz-Institut für Strahlen- und Kernphysik of the Rheinische Friedrich-Wilhelms-Universität Bonn, Germany, a complete certificate authority (CA) is set up at the institute in order to provide maximum flexibility and optimum security for the daily work with local network resources. Due to policy restrictions described by the contract between Uni-Bonn, DFN association and Deutsche Telekom AG, it is not allowed to offer certificates to institutes that allow signing of other user certificates for local purposes. This required the setup of the HISKP-CA.

Current in-house services that require signed certificates from the HISKP-CA are:

• OpenVPN (Installation Manual)

Standard services such as transport layer security (TLS) on email or web servers and all other servers with public access make use of the globally accepted PKI of the Bonn university provided by the DFN.