Public Key Infrastructure (PKI)

Overview

MITRE has deployed a Public Key Infrastructure (PKI) to support secure messaging for internal and sponsor communications.

This includes:

  • Digital signature
  • Encrypted messages

To enable you to communicate securely with MITRE personnel, the following resources are being made publicly available.

Important note: Both Workstation and Mobile devices use the same certificates, but they sometimes require different formats. Workstation certificates generally use the .CRT file extension and is best for desktop and laptop workstations that run Windows. Mobile Device certificates usually use the .CER file extension and is best for mobile hand-held smart phones that do not run Windows.

MITRE SMIME Soft Certificate Chain

This key chain is required to support MITRE SMIME user certificates, also known as person-entity certificates. The certificate containing "PE Root CA" in the name is a root certificate; the other is a subordinate (or intermediate) certificate.

MITRE Corporation PE Root CA-1
MITRE Corporation PE CA-1
MITRE Corporation PE CA-1 CRL (pkcs7)
MITRE Corporation PE CA-2
MITRE Corporation PE CA-2 CRL (pkcs7)

Support for Device Certificates

SMIME (person-entity) soft certificates and device (non-person entity) certificates are managed from separate key chains. You only need to install the following key chain to support MITRE-issued device certificates. The certificate containing "BA ROOT" in the name is a root certificate; the other is a subordinate (or intermediate) certificate.

MITRE BA ROOT
MITRE BA NPE CA-1
MITRE BA NPE CA-1 CRL (pkcs7)
MITRE BA NPE CA-3
MITRE BA NPE CA-3 CRL (pkcs7)
MITRE BA NPE CA-4
MITRE BA NPE CA-4 CRL (pkcs7)



Page last updated: January 15, 2020   |   Top of page

Copyright © 1997-2013, The MITRE Corporation. All rights reserved.

MITRE is a registered trademark of The MITRE Corporation. Material on this site may be copied and distributed with permission only.