DD Form 2842 DoD Public Key Infrastructure (PKI) Subscriber Certificate Acceptance and Acknowledgement of Responsibilities

What Is DD Form 2842?

DD Form 2842, DoD Public Key Infrastructure (PKI) Subscriber Certificate Acceptance and Acknowledgement of Responsibilities is a form filed when applying for a personal identifier necessary for accessing most content on federal websites. Disclosure of any information pertaining to the DD Form 2842 is voluntarily, but no PKI private keys will be issued if the applicant fails to provide the requested information.

The latest version of the form - sometimes incorrectly referred to as the DA Form 2842 - was released by the Department of Defense (DoD) in August 2009. An up-to-date DD Form 2842 fillable version is available for download and digital filing below or can be found through the Executive Services Directorate website.

Most of the content on government websites can be accessed only if a user has a Federal/DoD Public Key Infrastructure (PKI), Personal Identity Verification (PIV), or a Common Access Card (CAC) installed in their browser. After the applicant successfully files the DD 2842, they will receive the certificates and keys needed to verify their digital signature and identity on these websites and gain access to certain systems.

It's extremely important for subscribers to keep their access codes private. Writing them down - for instance - is prohibited. The key recovery base provides the opportunity to recover any lost data if necessary. If the codes are lost or misplaced, the subscriber must immediately contact their supervisor, security officer, Certification Authority (CA), Registration Authority (RA), Local Registration Authority (LRA), Trusted Agent (TA), or Verifying Official (VO).

ADVERTISEMENT
DEPARTMENT OF DEFENSE (DOD) PUBLIC KEY INFRASTRUCTURE (PKI)
SUBSCRIBER
CERTIFICATE OF ACCEPTANCE AND ACKNOWLEDGEMENT OF RESPONSIBILITIES
1. CERTIFICATE ACCEPTED BY
a. NAME (Typed or printed) (Last, First, Middle Initial)
b. UNIQUE IDENTIFICATION (e.g., EDIPI, UID)
c. ORGANIZATION
d. TELEPHONE NUMBER (Include
e. E-MAIL ADDRESS
Area Code)
PRIVACY ACT STATEMENT
AUTHORITY: 5 U.S.C. 301, Departmental Regulation; 44 U.S.C. 3101.
PRINCIPAL PURPOSE(S): To collect personal identifiers during the certification registration process, to ensure positive
identification of the subscriber who signs this form.
ROUTINE USES: Information is used in the DOD PKI certificate registration process.
DISCLOSURE: Voluntary; however, failure to provide the information may result in denial of issuance of a token containing
PKI private keys.
You have been authorized to receive one or more private and public key pairs and associated certificates. A private key
enables you to digitally sign documents and messages and identify yourself to gain access to systems. You may have
another private key to decrypt data such as encrypted messages. People and electronic systems inside and outside the DoD
will use public keys associated with your private keys to verify your digital signature, or to verify your identity when you
attempt to authenticate to systems, or to encrypt data sent to you. The certificates and private keys will be issued on a
token, for example a Common Access Card (CAC), another hardware token, or a floppy disk. The certificates and private
keys on your token are government property and may be used for official purposes only.
Acknowledgement of Responsibilities: I acknowledge receiving my PKI private keys and will comply with the following
obligations:
- I will use my certificates and private keys only for official purposes;
- I will comply with the instructions described to me today for selecting a Personal Identification Number (PIN) or other
required method for controlling access to my private keys and will not disclose same to anyone, leave it where it might
be observed, nor write it on the token itself;
- I understand that if I receive key management (encryption/decryption) key pairs on my token, copies of the private
decryption keys have been provided to the key recovery database in case they need to be recovered; and
- I will report any compromise (e.g., loss, suspected or known unauthorized use, misplacement, etc.) of my PIN or token to
my supervisor, security officer, Certification Authority (CA), Registration Authority (RA), Local Registration Authority
(LRA), Trusted Agent (TA), or Verifying Official (VO), immediately.
Liability: I will have no claim against the DoD arising from use of the Subscriber's certificates, the key recovery process, or a
Certification Authority's (CA's) determination to terminate or revoke a certificate. The DoD is not liable for any losses,
including direct or indirect, incidental, consequential, special, or punitive damages, arising out of or relating to any certificate
issued by a DoD CA.
Governing Law: DoD Public Key Certificates shall be governed by the laws of the United States of America.
f. IDENTIFICATION 1
g. IDENTIFICATION 2
(1) TYPE
(2) NUMBER
(1) TYPE
(2) NUMBER
(DoD ID, Passport, etc.)
(DoD ID, Passport, etc.)
h. SUBSCRIBER'S SIGNATURE (The signature provided may be a digital signature if a good fingerprint
i. DATE SIGNED (YYYYMMMDD)
or other adequate biometric has been collected. Otherwise the subscriber must provide a handwritten
signature.)
2. REGISTRATION OFFICIAL PER CPS
I have personally verified the identity of the person above in accordance with the applicable CPS and have personally
witnessed that person sign the form.
a. NAME (Typed or printed) (Last, First, Middle Initial)
b. ORGANIZATION
c. TELEPHONE NUMBER (Include Area Code)
d. E-MAIL ADDRESS
e. REGISTRATION OFFICIAL'S SIGNATURE
f. DATE SIGNED (YYYYMMMDD)
A copy of this form shall be provided
DD FORM 2842, AUG 2009
PREVIOUS EDITION IS OBSOLETE.
to the Subscriber.
Adobe Professional 8.0
DEPARTMENT OF DEFENSE (DOD) PUBLIC KEY INFRASTRUCTURE (PKI)
SUBSCRIBER
CERTIFICATE OF ACCEPTANCE AND ACKNOWLEDGEMENT OF RESPONSIBILITIES
1. CERTIFICATE ACCEPTED BY
a. NAME (Typed or printed) (Last, First, Middle Initial)
b. UNIQUE IDENTIFICATION (e.g., EDIPI, UID)
c. ORGANIZATION
d. TELEPHONE NUMBER (Include
e. E-MAIL ADDRESS
Area Code)
PRIVACY ACT STATEMENT
AUTHORITY: 5 U.S.C. 301, Departmental Regulation; 44 U.S.C. 3101.
PRINCIPAL PURPOSE(S): To collect personal identifiers during the certification registration process, to ensure positive
identification of the subscriber who signs this form.
ROUTINE USES: Information is used in the DOD PKI certificate registration process.
DISCLOSURE: Voluntary; however, failure to provide the information may result in denial of issuance of a token containing
PKI private keys.
You have been authorized to receive one or more private and public key pairs and associated certificates. A private key
enables you to digitally sign documents and messages and identify yourself to gain access to systems. You may have
another private key to decrypt data such as encrypted messages. People and electronic systems inside and outside the DoD
will use public keys associated with your private keys to verify your digital signature, or to verify your identity when you
attempt to authenticate to systems, or to encrypt data sent to you. The certificates and private keys will be issued on a
token, for example a Common Access Card (CAC), another hardware token, or a floppy disk. The certificates and private
keys on your token are government property and may be used for official purposes only.
Acknowledgement of Responsibilities: I acknowledge receiving my PKI private keys and will comply with the following
obligations:
- I will use my certificates and private keys only for official purposes;
- I will comply with the instructions described to me today for selecting a Personal Identification Number (PIN) or other
required method for controlling access to my private keys and will not disclose same to anyone, leave it where it might
be observed, nor write it on the token itself;
- I understand that if I receive key management (encryption/decryption) key pairs on my token, copies of the private
decryption keys have been provided to the key recovery database in case they need to be recovered; and
- I will report any compromise (e.g., loss, suspected or known unauthorized use, misplacement, etc.) of my PIN or token to
my supervisor, security officer, Certification Authority (CA), Registration Authority (RA), Local Registration Authority
(LRA), Trusted Agent (TA), or Verifying Official (VO), immediately.
Liability: I will have no claim against the DoD arising from use of the Subscriber's certificates, the key recovery process, or a
Certification Authority's (CA's) determination to terminate or revoke a certificate. The DoD is not liable for any losses,
including direct or indirect, incidental, consequential, special, or punitive damages, arising out of or relating to any certificate
issued by a DoD CA.
Governing Law: DoD Public Key Certificates shall be governed by the laws of the United States of America.
f. IDENTIFICATION 1
g. IDENTIFICATION 2
(1) TYPE
(2) NUMBER
(1) TYPE
(2) NUMBER
(DoD ID, Passport, etc.)
(DoD ID, Passport, etc.)
h. SUBSCRIBER'S SIGNATURE (The signature provided may be a digital signature if a good fingerprint
i. DATE SIGNED (YYYYMMMDD)
or other adequate biometric has been collected. Otherwise the subscriber must provide a handwritten
signature.)
2. REGISTRATION OFFICIAL PER CPS
I have personally verified the identity of the person above in accordance with the applicable CPS and have personally
witnessed that person sign the form.
a. NAME (Typed or printed) (Last, First, Middle Initial)
b. ORGANIZATION
c. TELEPHONE NUMBER (Include Area Code)
d. E-MAIL ADDRESS
e. REGISTRATION OFFICIAL'S SIGNATURE
f. DATE SIGNED (YYYYMMMDD)
A copy of this form shall be provided
DD FORM 2842, AUG 2009
PREVIOUS EDITION IS OBSOLETE.
to the Subscriber.
Adobe Professional 8.0

Download DD Form 2842 DoD Public Key Infrastructure (PKI) Subscriber Certificate Acceptance and Acknowledgement of Responsibilities

1838 times
Rate
4.5(4.5 / 5) 184 votes
ADVERTISEMENT

DD Form 2842 Instructions

  • Section 1 contains the privacy act statement and the authorization by the accepting authority. Some boxes may be filled automatically in the electronic form.

Box A is for the last and first name, and the middle initial. All information is either written down or typed. Unique identification - like EDIPI or UID - is specified in Box B .

The name of the organization is provided in Box C. Box D should contain the phone number with the area code. The Subscriber's e-mail address is provided in Box E

If the federal government identification credential is inaccessible, the Subscriber may submit two non-federal government-issued identification cards; at least one of them should contain a photo. In this case, the descriptive names of both documents are inserted in Boxes F1 and G1, and their corresponding unique numbers are filled in Boxes F2 and G2.

The Subscriber then signs and dates the form in Boxes H and I. The current date is given in the following format: YYYYMMMDD.

  • Section 2 is filed by the Registration Official. Some boxes may be filled automatically in electronic forms, only empty lines need to be completed.

Boxes A and B require the Official's name and organization respectively. Box C contains the Official's phone number with the area code and Box D specifies their email address.

The Official gives their digital or handwritten signature in Box E and dates the form in Box E. The Subscriber must receive a copy of the DD 2846 from the Registration Official after the form is completely filled out and signed.