Certificate Authority (CA) plays a critical role in production Hyperledger Fabric networks although this role is not always visible for the first sight. Some of the important characteristics:
- CA is not necessary to run continuously in the Hyperledger Farm
- in case CA is down no new certificate can be registered or rolled in, but the remaining of the farms works further without error.
- If the CA database is faulty or lost, no new certificate enrollment can be done for already registered users.
- If the CA database user information is compromised, attackers might enroll new certificates for existing logins.