- Description – App certs are configured when an application is converted, and app certs are issued when the application starts. These certificates are signed by the Zone Root CA, which issues certificates only to enclaves presenting a valid attestation.
- Validity Period – 90 days
Zone Root CA Cert
- Description – On installation of Data Shield, a Zone Root CA certificate is created. All the other certificates (node attestation and application certificates) have a trust chain back to the zone root CA.
- Validity Period –5 years