A: To get access to these applications you must first have a valid digital certificate. A valid digital certificate requires the user to have an activated cryptographic module. Your organization will have to supply you with a cryptographic module. If you have not activated your cryptographic module or if it has expired, you must contact your organization’s Local Registration Authority (LRA). Once your LRA has processed your request the RCMP will send a reference number to the end-user and an encrypted authorization code to the LRA.
If you require more detailed information on how to obtain a digital certificate, please refer to How do I obtain a digital certificate?
A: A digital certificate is an electronic “passport” that is used to uniquely identify a person within a public key infrastructure. The information on it identifies the user and provides confidence to others that the user’s identity has been confirmed. In a public key infrastructure trust between parties is critical to ensure secure and confidential communication. Digital certificates are a way of establishing that trust.
A: The Certificate Authority (CA) is responsible for binding the user’s public keys and personal information in the form of digital certificates. The CA is also responsible for managing all issued certificates.
A: A Local Registration Authority (LRA) is the person who performs certificate duties for their agency on behalf of a Certificate Authority. For police agencies outside of Ontario and Quebec LRAs perform the certificate duties on behalf of the RCMP CA. The duties of the LRA include identifying and authenticating new certificate users, recovering the profiles of existing users and authorizing the revocation of a user’s certificate. These duties can only be carried out by an accredited LRA.
A: To find out if your organization has an LRA, please contact your local RCMP detachment to obtain the phone number of the Central Helpdesk or contact the NPS application policy centre. Technical support is available for members of the policing community only.
A: Police agencies must first identify a full time employee who has a security clearance equivalent to the RCMP’s enhanced reliability clearance. The employee must be able to receive external e-mail. The employee must complete the LRA Training Registration Form and receive LRA training.
A: Contact your LRA. The LRA will contact the RCMP and inform them of your lost cryptographic module. You will then need to go through the process of recovering your profile.
A: Contact your LRA to have your Entrust profile recovered. This process may take some time.
A: Police agencies are responsible for obtaining the cryptographic modules for their employees. See details on cryptographic module.
A: Contact the policy centre of the application you wish to access.
A: Sharing your passphrase is a serious security breach and is grounds for the revocation of your digital certificate. Remember that your passphrase provides access to your secure electronic identity and you are responsible for any actions performed under your electronic identity.
A: Cryptographic modules are personal and provide access to your secure electronic identity and you are responsible for any actions performed with your cryptographic module. They must not be shared.
A: A cryptographic module can be reused if the previous owner no longer requires it. It is important that the information from the previous owner be deleted before passing it on to a new user. This can be done by “initializing” the token. For information please consult your LRA for the Entrust On-line Guide.
A: Please contact your LRA. The guide was provided at their LRA training session.
A: Please contact the RCMP Certificate Services Program for the PKI Enabled NPS Application List.
A: Strong two-factor authentication is a security process ensuring users` secure digital identities by requiring users to identify themselves using something they know such as a passphrase, and something they have such as a cryptographic module.
Passwords alone are easily compromised and are widely regarded as the weakest link in any given security system.
A: Entrust is the brand name of the software tool purchased by the RCMP to meet police needs for secure digital identities and electronic document security. It allows users to encrypt, decrypt, digitally sign and authenticate electronic transactions across all applications with certified security.