LiteSSL Relying Party Agreement
YOU MUST READ THIS RELYING PARTY AGREEMENT ("AGREEMENT") BEFORE VALIDATING A LITESSL CA, INC. ("LITESSL") LITESSL, LITESSL WILDCARD, DIGITAL CERTIFICATE ("CERTIFICATE"), OR OTHERWISE ACCESSING OR USING A LITESSL OR LITESSL AFFILIATE DATABASE OF CERTIFICATE REVOCATIONS AND OTHER INFORMATION ("REPOSITORY") OR ANY CERTIFICATE REVOCATION LIST ISSUED BY LITESSL. IF YOU DO NOT AGREE TO THE TERMS OF THIS AGREEMENT, YOU ARE PROHIBITED FROM SUBMITTING A QUERY AND FROM DOWNLOADING, ACCESSING, OR USING ANY LITESSL CRL BECAUSE YOU ARE NOT AUTHORIZED TO USE LITESSL'S REPOSITORY OR ANY LITESSL CRL. IN CONSIDERATION OF YOUR AGREEING TO THE TERMS OF THIS RELYING PARTY AGREEMENT, YOU SHALL BE PERMITTED TO RELY ON CERTIFICATES ACCESSED BY YOU IN ACCORDANCE WITH THE TERMS OF THIS AGREEMENT.
1. Acceptance; Application of Terms
1.1. This Agreement becomes effective when you submit a query to search for a Certificate, or to validate a digital signature created with a private key corresponding to a public key contained in a Certificate, by downloading a LITESSL CRL, or when you otherwise use or rely upon any information provided in or services described in LITESSL's Repository, LITESSL website, or any LITESSL CRL. Relying Party Agreements in force appear in the Repository at
http://www.comodogroup.com/about/comodo-agreements.php
1.2. You acknowledge and agree that you have access to sufficient information to ensure that you can make an informed decision as to the extent to which you will choose to rely on the information in a Certificate. You acknowledge and agree that your use of the Repository and your use of any LITESSL CRL are governed by this Agreement and the LITESSL addendum to and the Comodo CPS. YOU ARE SOLELY RESPONSIBLE FOR DECIDING WHETHER OR NOT TO RELY ON THE INFORMATION IN A CERTIFICATE. You also acknowledge and agree that you alone shall entirely bear the legal consequences of your failure to comply with the Relying Party obligations set forth in this Agreement.
2. Definitions
The capitalized terms used in this Agreement shall have the following meanings unless otherwise specified:
"Certificate" (also
"Digital Certificate") means an encrypted electronic data file (conforming to the X509 version 3 ITU-T standard) issued by LITESSL in order to identify a person or entity or to provide
SSL encryption using a Digital Signature or entity and which contains the domain name or identity of the person authorized to use the Digital Signature and a copy of their Public Key, a serial number, a time period during which the Digital Certificate may be used and a Digital Signature issued by LITESSL.
"Certificate Applicant" means an individual or organization that requests the issuance of a Certificate by a Certification Authority.
"Certificate Chain" means a chain of Certificates containing an end-user Subscriber Certificate and CA Certificates, which terminates in a root Certificate.
"Certification Authority" (CA) means an entity authorized to issue, manage, revoke, and renew Certificates signed by LITESSL.
"Digital Certificate Services" means any services related to the issuing, managing, revoking, and renewing of certificates on behalf of LITESSL under this Agreement.
"Digital Signature" means an encrypted electronic data file which is attached to or logically associated with other electronic data and which identifies and is uniquely linked to the signatory of the electronic data, is created using means that the signatory can maintain under its sole control and is linked in a way so as to make any subsequent changes that have been made to the electronic data detectable.
"Comodo CPS" means the LiteSSL addendum to and the Certification Practice Statement released by LITESSL, as amended from time to time, which may be accessed from
http://www.comodogroup.com/about/comodo-agreements.php
"Private Key" means a confidential encrypted electronic data file designed to interface with a Public Key using the same encryption algorithm and which may be used to create digital signatures, encrypt and decrypt files or messages and provide proof of identities to access secure websites.
"Public Key" means a publicly available encrypted electronic data file designed to interface with a Private Key using the same encryption algorithm and which may be used to verify digital signatures, encrypt and decrypt files or messages and verify identities to access secure websites.
"Registration Authority" (RA) means an entity approved by a CA to assist Certificate Applicants in applying for Certificates, and to approve or reject Certificate Applications, revoke Certificates, or renew Certificates.
"Relying Party" means an individual or organization that acts in reliance on either a Certificate or a digital signature.
"Repository" means a publicly available collection of databases for storing and retrieving Digital Certificates and other information relating to Digital Certificates and which may be accessed via LITESSL's website.
"Subscriber" means a person who is issued a Certificate signed by LITESSL and who has entered into a Subscriber Agreement.
"Subscriber Agreement" means an agreement used by a CA or RA setting forth the terms and conditions under which an individual or organization acts as a Subscriber.
"Subscriber Certificate" means a Certificate signed by LITESSL and issued to a Subscriber.
3. LITESSL Certificates
3.1. The Certificates relied upon in accordance with this Agreement are issued by LITESSL. LiteSSL currently offers digital certificates in two variants: LITESSL and LITESSL Wildcard. The Certificates are issued to Digital Certificate Subscribers and provide the validation required by the Comodo CPS.
3.2. You acknowledge and agree, to the extent permitted by applicable law, that where a transaction is required to be in writing, a message or other record bearing a digital signature verifiable with reference to a Certificate is valid, effective, and enforceable to an extent no less than had the same message or record been written and signed on paper. Subject to applicable law, a digital signature or transaction entered into with reference to a Certificate shall be effective regardless of the geographic location where the Certificate is issued or the digital signature created or used, and regardless of the geographic location of the place of business of the Subscriber.
3.3. Certificates issued by LITESSL are not designed, intended, or authorized for use or resale as control equipment in hazardous circumstances or for uses requiring fail-safe performance such as the operation of nuclear facilities, aircraft navigation or communication systems, air traffic control systems, or weapons control systems, where failure could lead directly to death, personal injury, or severe environmental damage. LITESSL is not responsible for assessing the appropriateness of the use of a Certificate. You agree as a Relying Party that Certificates will not be used or relied upon by you beyond the limitations set forth in this Agreement.
4. Relying Party Obligations
4.1. As a Relying Party, you are obligated to:
(i) Independently assess the appropriateness of the use of a Certificate for any given purpose and determine that the Certificate will, in fact, be used for an appropriate purpose.
(ii) Utilize the appropriate software and/or hardware to perform Digital Signature verification or other cryptographic operations you wish to perform, as a condition of relying on a Certificate in connection with each such operation. Such operations include identifying a Certificate Chain, and verifying the Digital Signatures on all Certificates in the Certificate Chain. You agree that you will not rely on a Certificate unless these verification procedures are successful.
(iii) Check the status of a Certificate on which you wish to rely, as well as all the Certificates in a Certificate's Certificate Chain. If any of the Certificates in the Certificate Chain have been revoked, you agree that that you will not rely on the end-user Subscriber Certificate or other revoked Certificate in the Certificate Chain.
(iv) Only rely on the Certificate if all of the checks described in the previous paragraphs are successful, provided that reliance upon the Certificate is reasonable under the circumstances and in light of Section 1 of this Agreement. If the circumstances do, or reasonably ought to, indicate a need for additional assurances, it is your responsibility to obtain such assurances for such reliance to be deemed reasonable.
4.2. You agree that you shall not monitor, interfere with, or reverse engineer the technical implementation of the LITESSL Digital Certificate Services, except upon prior written approval from LITESSL, and shall not otherwise intentionally compromise the security of the LITESSL Digital Certificate Services.
5. Disclaimer; Limitation of Liability; Indemnity
5.1. Disclaimer of Warranties. YOU AGREE THAT YOUR USE OF LITESSL'S SERVICE(S) IS SOLELY AT YOUR OWN RISK. YOU ACKNOWLEDGE THAT YOU UNDERSTAND THAT LITESSL CERTIFICATES ARE NOT INTENDED FOR E-COMMERCE. YOU AGREE THAT ALL SUCH SERVICES ARE PROVIDED ON AN "AS IS" AND AS AVAILABLE BASIS, EXCEPT AS OTHERWISE NOTED IN THIS AGREEMENT. EXCEPT AS OTHERWISE EXPRESSLY SET FORTH HEREIN, LITESSL EXPRESSLY DISCLAIMS ALL WARRANTIES, TERMS, CONDITIONS AND REPRESENTATIONS OF ANY KIND, WHETHER EXPRESS OR IMPLIED, INCLUDING, WITHOUT LIMITATION, BUT NOT LIMITED TO THOSE OF MERCHANTABILITY, SATISFACTORY QUALITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT. LITESSL DOES NOT MAKE ANY WARRANTY, TERM, CONDITION OR REPRESENTATION THAT THE SERVICE WILL MEET YOUR REQUIREMENTS, OR THAT THE SERVICE WILL BE UNINTERRUPTED, TIMELY, SECURE OR ERROR FREE; NOR DOES LITESSL MAKE ANY WARRANTY, TERM, CONDITION OR REPRESENTATION AS TO THE RESULTS THAT MAY BE OBTAINED FROM THE USE OF THE SERVICE OR TO THE ACCURACY OR RELIABILITY OF ANY INFORMATION OBTAINED THROUGH THE SERVICE. YOU UNDERSTAND AND AGREE THAT ANY MATERIAL AND/OR DATA DOWNLOADED OR OTHERWISE OBTAINED THROUGH THE USE OF LITESSL' SERVICES IS DONE ENTIRELY AT YOUR OWN RISK. NO ADVICE OR INFORMATION, WHETHER ORAL OR WRITTEN, OBTAINED BY YOU FROM LITESSL OR THROUGH LITESSL'S SERVICES OR LITESSL RA's SHALL CREATE ANY WARRANTY, TERM, CONDITION OR REPRESENTATION, UNLESS IT IS EXPRESSLY MADE HEREIN. TO THE EXTENT APPLICABLE JURISDICTIONS DO NOT ALLOW THE EXCLUSION OF CERTAIN WARRANTIES, TERMS, CONDITIONS OR REPRESENTATIONS, SOME OF THE ABOVE EXCLUSIONS MAY NOT APPLY TO YOU. LITESSL IS NOT RESPONSIBLE FOR AND SHALL HAVE NO LIABILITY WITH RESPECT TO ANY PRODUCTS AND/OR SERVICES PURCHASED BY YOU FROM A THIRD PARTY.
5.2. Limitation of Liability. EXCEPT AS EXPRESSLY PROVIDED OTHERWISE HEREIN, LITESSL SHALL NOT BE LIABLE TO THE RELYING PARTY (OR ANY OTHER PERSON OR ENTITY) WHETHER IN CONTRACT (INCLUDING UNDER ANY INDEMNITY OR WARRANTY), IN TORT (INCLUDING NEGLIGENCE), UNDER STATUTE OR OTHERWISE FOR ANY LOSS OR DAMAGES INCURRED BY SUCH PARTY, INCLUDING BUT NOT LIMITED TO LOSS OF PROFITS, LOSS OF REVENUE, LOSS OF ANTICIPATED SAVINGS, LOSS OR CORRUPTION OF DATA, LOSS OF CONTRACT OR OPPORTUNITY OR LOSS OF GOODWILL, WHETHER THAT LOSS OR DAMAGE IS DIRECT, INDIRECT OR CONSEQUENTIAL. IN NO EVENT SHALL LITESSL, ITS LICENSORS AND CONTRACTORS (INCLUDING THIRD PARTIES PROVIDING SERVICES AS PART OF THE SUBSCRIPTION SERVICE) BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL OR CONSEQUENTIAL DAMAGES EVEN IF LITESSL HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. TO THE EXTENT THAT A STATE DOES NOT PERMIT THE EXCLUSION OR LIMITATION OF LIABILITY AS SET FORTH HEREIN LITESSL'S LIABILITY IS LIMITED TO THE FULL EXTENT PERMITTED BY LAW IN SUCH STATE.
LITESSL SHALL NOT BE LIABLE TO THE RELYING PARTY FOR ANY LOSS SUFFERED BY THE RELYING PARTY DUE TO THE SUBSCRIBER'S BREACH OF THE SUBSCRIBER AGREEMENT.
5.3. Indemnification. You agree to release, indemnify, defend and hold harmless LITESSL and any LITESSL-approved RA's, and any of their respective contractors, agents, employees, officers, directors, shareholders, affiliates and assigns from all liabilities, claims, damages, costs and expenses, including reasonable attorney's fees and expenses, asserted by third parties or incurred by LITESSL relating to or arising out of
(i) your failure to perform the obligations of a Relying Party in accordance with this Agreement,
(ii) your reliance on a Certificate that is not reasonable under the circumstances, or
(iii) your failure to check the status of a Certificate to determine if it is expired or revoked. When LITESSL is threatened with suit or sued by a third party, LITESSL may seek written assurances from you concerning your promise to indemnify LITESSL; your failure to provide those assurances may be considered by LITESSL to be a material breach of this Agreement. LITESSL shall have the right to participate in any defense by you of a third-party claim related to your use of any LITESSL services, with counsel of our choice at your own expense. You shall have sole responsibility to defend LITESSL against any claim, but you must receive LITESSL's prior written consent regarding any related settlement. The terms of this Section 5 will survive any termination or cancellation of this Agreement.
6. Protection of Private Key
6.1. The security or integrity of a Private Key which corresponds to a Public Key contained in a Digital Certificate may be compromised due to an act or omission of a third party which has not been authorized by LITESSL, and which may or may not be detected.
6.2. LITESSL SHALL NOT BE LIABLE TO THE RELYING PARTY FOR ANY LOSS INCLUDING ANY INDIRECT, INCIDENTAL, SPECIAL OR CONSEQUENTIAL DAMAGES, SUFFERED BY ANY PARTY DUE TO THE LOSS, THEFT, UNAUTHORIZED DISCLOSURE, UNAUTHORIZED MANIPULATION, ALTERATION, LOSS OF USE, OR ANY OTHER COMPROMISE OF ANY PRIVATE KEY USED BY THE SUBSCRIBER.
7. Miscellaneous
7.1. Force Majeure.Any delay,cessation, interruption in or failure of performance of LITESSL shall not constitute default hereunder if and to the extent such delay or failure of performance is caused by occurrences beyond the reasonable control of LITESSL, as the case may be, including but not limited to: acts of God or the public enemy;armed conflict; terrorist action;act of war, rebellion, sabotage or damage resulting there from; compliance with any order or request of any governmental authority;earthquake, storm,fire, flood, hurricane or other natural disasters; release of hazardous or toxic substances; explosions; accidents; riots; strikes,lockout, boycott or other concerted acts of workmen, whether direct or indirect; or any other causes whether or not of the same class or kind as those specifically above named, which are not within the reasonable control of LITESSL, as the case may be.
7.2. Waiver. The waiver by LITESSL of a breach or default of any of the provisions of this Agreement by the Relying Party shall not be construed as a waiver of any succeeding breach of the same or other provisions nor shall any delay or omission on the part of LITESSL to exercise or avail itself of any right power or privilege that it has or may have hereunder operate as a waiver of any breach or default by the Relying Party.
7.3. Entire Agreement.
(i) This Agreement and all documents referred to herein contain the entire and exclusive agreement and understanding between the parties on the subject matter contained herein and supersedes all prior agreements, understandings and arrangements relating thereto. No representation, undertaking or promise shall be taken to have been given or implied from anything said or written in negotiations between the parties prior to this Agreement except as may be expressly stated in this Agreement.
(ii) LITESSL may vary any term of this Agreement at any time without written notice to the Relying Party of the variation. Any variations to this Agreement required by law shall take effect immediately. LITESSL shall provide written notice of such a variation to the Relying Party.
7.4. Governing Law.This Agreement and all matters arising from or connected with it, are governed by and shall be construed in accordance with the law of New Jersey and the parties hereby submit to the exclusive jurisdiction of the state and federal courts in the state of New Jersey.
7.5. Survival. This Agreement shall be applicable for as long as you rely on a Certificate or access or use the LITESSL database of CRL information.
7.6. Assignment. The Relying Party may not assign or transfer or purport to assign or transfer a right or obligation under this Agreement without first obtaining the prior written consent of LITESSL. LITESSL may assign its rights, duties and obligations hereunder at any time without consent from the Relying Party.
7.7. Independent Contractors. The parties to this Agreement are independent contractors. Neither party is an agent, representative, or partner of the other party. Neither party shall have any right, power or authority to enter into any agreement for or on behalf of, or incur any obligation or liability of, or to otherwise bind, the other party. This Agreement shall not be interpreted or construed to create an agency, association, joint venture or partnership between the parties or to impose any partnership obligation or liability upon either party. Each party shall bear its own costs and expenses in performing this Agreement.