Key ceremony – In public-key cryptography and computer security, a root key ceremony is a procedure where a unique pair of public and private root keys is generated. Depending on the certificate policy, the generation of the root keys may require notarization, legal representation, witnesses and “key holders” to be present, as the information on the system is a responsibility of the parties. A commonly recognized best practice is to follow the SAS 70 standard for root key ceremonies.