AAI and universities Roles and functions

The Smart Card Architect Objectives zBuild a secure Authentication and Authorization Infrastructure between Universities zUse the Student card for both legitimization and network authentication zDecentralize the card issuance (University) zSimplify card distribution

The Smart Card Architect Parties Role SWITCH (trusted party) Uni 1 Uni 2 NagraCard Certificate policy Distributed Directory Student identification Certificate personalization and signature Card personalization Card Management Local directory Card Pre-personalization Anonymous Key generation Card distribution Certified Messages Conditional Access Encrypted information Card personalized list Certificates Card With CA