A Medium-Token Assurance Identity Certificate is intended for all applications operating in environments appropriate for medium assurance but which require a higher degree of technical non-repudiation based on the relying party’s assessment. A certificate that a person uses to authenticate to a PKI-enabled application, such as a secure web site. Identity certificates may be used for non-repudiation purposes, (i.e., transactions that have been signed by an identity certificate) and may be legally linked to the owner of that certificate. The token certificate may also be used for secure and authenticated email. Some web sites the require Medium-Token Assurance as the minimum acceptable assurance level are DoD eMall and JPAS.
A Medium-Token Assurance Encryption Certificate is intended for all applications operating in environments appropriate for medium assurance but which require a higher degree of technical non-repudiation based on the relying party’s assessment. A certificate that may be used for encrypting e-mail. When encrypting e-mail messages, the sender uses the certificate of the recipient(s), and the recipient decrypts the message using his or her private key.
