CA/BR Audit Guidance: Difference between revisions

Jump to navigation Jump to search

CA/BR Audit Guidance (view source)

Revision as of 22:21, 11 November 2014

113 bytes added ,  11 November 2014
m
→‎Extended Validation
Line 86: Line 86:
# WebTrust EV -- [http://www.webtrust.org/homepage-documents/item79807.pdf WebTrust Principles and Criteria for Certification Authorities – Extended Validation SSL] (or [http://www.webtrust.org/homepage-documents/item76003.pdf Principles and Criteria for Certification Authorities – Extended Validation Audit Criteria])
# WebTrust EV -- [http://www.webtrust.org/homepage-documents/item79807.pdf WebTrust Principles and Criteria for Certification Authorities – Extended Validation SSL] (or [http://www.webtrust.org/homepage-documents/item76003.pdf Principles and Criteria for Certification Authorities – Extended Validation Audit Criteria])


However, if the CA hierarchy can only be used for EV certificates, and the CP/CPS clearly states this, then a separate WebTrust BR audit statement is not needed because it is encompassed within the WebTrust EV audit. In other words, the WebTrust EV audit statement will also suffice as the WebTrust BR audit statement.
However, if the CA hierarchy can only be used for EV certificates, the CP/CPS clearly states this, and an annual scan of the certificate database proves that '''all''' end-entity certificates have the EV policy OID, then a separate WebTrust BR audit statement is not needed because it is encompassed within the WebTrust EV audit. In other words, the WebTrust EV audit statement will also suffice as the WebTrust BR audit statement.


== ETSI BR Audit Statement/Certificate ==
== ETSI BR Audit Statement/Certificate ==
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1032583"

Navigation menu