What is the function and basic framework of China Financial Certification Center?

China Financial Certification Center (CFCA) is a national authoritative security certification institution approved by the People's Bank of China and the State Information Security Administration, and it is one of the important financial information security infrastructures in China. After the promulgation of "People's Republic of China (PRC) Electronic Signature Law", CFCA became the first electronic authentication service organization to obtain an electronic authentication service license.

CFCA authentication system adopts international leading PKI technology;

Generally speaking, it has a three-layer CA structure:

The first layer is the root ca;

The second layer is policy CA, which can extend the credit scope to different industries and fields;

The third layer is Operation CA, which issues certificates according to the Certificate Operation Specification (CPS).

Operation CA consists of CA system and certificate registration and approval authority (RA):

CA system: responsible for certificate issuance, approval, revocation, inquiry, digital signature, certificate/blacklist issuance, key recovery and management, certificate identification and policy formulation. CA system is located in CFCA headquarters and does not directly face users;

RA system: user-oriented, responsible for reviewing user identity applications and applying to CA for forwarding certificates for users; Generally located in the headquarters of commercial banks, securities companies, insurance companies and other accreditation bodies. The acceptance point (LRA) is located in branches of commercial banks, securities and insurance business departments and branches of other certificate-applying institutions. RA system can be easily integrated into its business application system.