Public Works and Government Services CanadaCanada wordmark
Skip navigation links
Français Contact Us Help Search Canada Site
PWGSC Home About PWGSC Services Canadians Businesses
SAKMS - Secure Application Key Management Systems
ICM What's New SAKMS Site Map SAKMS Home
ICM
Service Descriptions
Notices
Schedules
LRA Corner
Documents
Forms
Client Testing
Utilities
Acronyms
Links

PWGSC > ICM

Internal Credential Management (ICM) (also known as SAKMS)

Product Description

Internal Credential Management (ICM) is a service that provides public key infrastructure (PKI) certificates that may be used by client organizations for purposes such as information publication; self-service; forms submission; correspondence; application workflow and electronic commerce.

Major components of the ICM service include:

  • The Government of Canada (GC) Common Services CA (EntrustTM Security ManagerTM) that provides for key, certificate and certificate revocation list (CRL) generation and management;
  • The website ICM is used to communicate ICM service delivery information;
  • Local Registration Authority (LRA) training and ongoing re-certification;
  • A national help desk;
  • A test environment that may be used by clients to test their applications for compatibility with ICM services.

Benefits and uses of the ICM service include:

  • Certificates conform to GC PKI Medium Assurance Certificate Policies;
  • Certificates may be issued to individuals, roles, devices, applications and groups;
  • Certificates may be used with applications and devices to:
    • Verify identity (Authentication)
    • Protect data from unauthorized disclosure up to and including the level of Protected B (Access Control);
    • Protect data from undetected modification (Integrity); and
    • Prevent denial of a previous action (Non-repudiation).
  • The Common Services CA is cross certified with the Canadian Federal PKI Bridge CA (CFPB) that provides interoperability with other GC PKIs;
  • The ICM service is designed to conform to the GC Security Policy.

Product Options

  • None

Price

Federal government departments and agencies:

  • ICM services are currently centrally funded for federal government departments and agencies, with the exception of LRA training that carries a user based fee.
  • LRA training:             $260 per LRA for initial training;
                                     $125 per LRA for annual re-certification.

Non-federal jurisdictions:

  • Cost-recovery and professional services fees apply to ICM clients that are not a federal government department or agency. [Non-federal organizations must be sponsored by a federal government department or agency that is an ICM client.]

Levels of Service

The ICM service is available 24x7x365. Target monthly availability is 99.5%

Client System Pre-Requisites

ICM certificates are issued using an in-person registration and administration process that involves a local registration authority (LRA). ICM clients must be able to establish LRAs within their organization.

To access the ICM services, clients will require:

  • Network connectivity via SCNet or the Internet
  • Applications or devices capable of consuming ICM services

Other Related Products

  • Federated Infrastructure National Directory Service (FINDS) – ICM services rely upon FINDS to make certificates, CRLs and ARLs available for client consumption.

Customer Contact

For additional information about this and other products, contact your Client Relationship Manager (CRM).
Maintained by the ICM Group
  
Last Updated: 2006-11-01
Important Notices