Transport Certificates

Drawio

lbox

mVer	2
zoom	1
simple	0
zoominComment	10
inCommentcustContentId	0127697049
pageId	127795365
custContentIdlbox	1276970491
diagramDisplayName	Untitled Diagram-1720473013056.drawio
1	contentVer	2
revision	2
baseUrl	https://openfinanceuae.atlassian.net/wiki
diagramName	Untitled Diagram-1720473013056.drawio
pCenter	0
width	1579.5
links
tbstyle
height	596.5

certificte certifictes

Cert Name	Description	Issuer	Private Key held by	CSR generated by	Certificate Generated by	Actions required by LFI
C1	Identifies the TPP to OFP	OFTF	TPP	TPP	TPP	None
S2	Identifies non mtls OFP endpoints to TPP	Lets Encrypt	Ozone	NA (uses ACME protocol)	Ozone	None
S1	Identifies mtls OFP endpoints to TPP	OFTF	Ozone	Ozone	LFI	Yes	Ozone will provide a CSR and the LFI should use the OFTF to produce the certificate
C4	Identifies OFP to LFI’s Ozone Connect endpoint	OFTF	Ozone	Ozone	LFI	Yes		S4	Identifies LFI’s Ozone Connect endpoint to Ozone	OFTF	LFI	LFI	LFI	Yes	Ozone will provide scripts to the LFI to assist with CSR generation if requested
S3	Identifies `cm-pub` and `hh-pub` endpoints to LFI	OFTF	Ozone	Ozone	LFI	Yes
C3S4	Identifies LFI to the `cm-pub` and `hh-pub` endpointsLFI’s Ozone Connect endpoint to Ozone	OFTF	LFI	LFI	LFI	Yes	Ozone will provide scripts to the LFI to assist with CSR generation if requested The subject of the	C3 certificate should be provided to Ozone. Ozone will limit access to	certificates issued by OFTF AND having that specific subject
C3	Identifies LFI to the `cm-pub` and `hh-pub` endpoints	OFTF	LFI	LFI	LFI	Yes

Drawio

mVer	2
zoom	1
simple	0
zoominComment	10
inCommentcustContentId	0127795513
pageId	127795365
custContentIdlbox	1277955131
diagramDisplayName	Untitled Diagram-1720473409295.drawio	lbox	1
contentVer	3
revision	3
baseUrl	https://openfinanceuae.atlassian.net/wiki
diagramName	Untitled Diagram-1720473409295.drawio
pCenter	0
width	941
links
tbstyle
height	481

...

Page Comparison