The EPRM Public Key Infrastructure (PKI) Audit Module (PAM) addresses PKI audit requirements and facilitates the PKI audit process for the Air Force at the local site/installation/base level, and the DoD PKI community at the Service/Component/Agency level across the DoD enterprise.
- IAW AFMAN 17-1301, all Air Force Local Registration Authorities (LRA) are required to complete the AFPKI self-assessment and submit to their designated AF Registration Authority (RA), annually. In utilizing ECM for PKI Audits, results will be automatically available to the designated RA. Mandatory use of EPRM is currently being updated as a requirement in AFMAN 17-1301.
- IAW various DoD, National Security Systems (NSS) and Federal PKI guidance, the DoD PKI Audit process provides a level of assurance that each DoD Certificate Management Authority (CMA) site is configured and operated in conformance with the relevant DoD and NSS certificate policy (CP) documents, current policy including [DoDCP], and DOD Key Recovery Policy [DoDKRP].