NL profile

This issue contains the decisions made for the NL profile of the FSC standard.

1. PKIO acts as Trust Anchor of the Group.
2. Configurations for TLS need to adhere to the NCSC recommendations: https://english.ncsc.nl/publications/publications/2021/january/19/it-security-guidelines-for-transport-layer-security-2.1
3. The serial number of the subject field of the X.509 certificate acts as PeerID.
4. The subject field organization of the X.509 certificate acts as a Peer name.
5. The serial number must contain an OIN.
6. When providing URL's to CRL's: Traffic originating from a client using a certificate that is present on the CRL must be blocked
7. Port 443 is used for data traffic, 8443 for management traffic.
8. Both logging and delegation extensions are implemented
9. A maximum of 100 grants per contract
10. A DelegatedServiceContract is only valid when a ServiceConnectionGrant exists between Delegator and Service provider
11. Determine the expiry date of log records
12. logging is mandatory
13. Use exponential backoff as retry mechanism for contracts and signatures propagation
14. The Transaction ID must be an UUID v7
15. The group ID for this profile is: dva-nederland