You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

Description

Merger under the same TSP

Date and time for the merger

Other information:

  • It is possible to change the issuing CA for an originator, but not possible to merge originators.
  • Merchant certificates can be renewed until the issuer revokes it. It is necessary to issue a new activation URL and distribute this before the old certificate is set to revoked.

Before the merger:

StepDescriptionResponsibleTaskDeadlineStatusDocuments and notes
1) Set up internal routinesThe respective TSP or Bank will require to have in place internal routines for move or merger of RA's.TSP or Bank

Decide the following:

  • How to deal with the OTP tokens
  • End user impact
  • Information to end users
  • How to deal with logs and how/who to archive (admin logs for certificates)
  • Which originator will be used after the merger
  • If the originator will change name or not

Note that the TSP/Bank is responsible for handling the end user certificates through the whole process, including revoke of old certificates.


PLANNING


2) BITS ApprovalThe respective TSP or Bank will require BITS approval for the following move or merger before ordering an RA ceremony.

TSP or Bank


PLANNING

Information from BITS about the process:

3a) If originator name change

The respective TSP or Bank have to fill out required order forms with the new name and send it to BankID signed.

TSP or Bank

PLANNING

Order form templates can be found here: Misc forms for BankID Support

3b) Change the nameBankID will change the nameBankIDBankID will create a change to update the originator with the new name.

PLANNING


4) If no originator name change 

No order is necessary.


After the merger:

StepDescriptionResponsibleTaskDeadlineStatusDocuments and notes
5) Renewals 

Renewals of end users, merchants etc.

As decided in step 1.

TSP and Bank
  1. Bank renew end user BankID certificates
  2. Bank asks merchants to renew merchant BankID's using HAT
  3. Possible change of OTP Service by adding a new and then removing the old

This is best done outside of peak hours to reduce the risk of latencies.


PLANNING


  • No labels