CA/BR Audit Guidance: Difference between revisions

Jump to navigation Jump to search

CA/BR Audit Guidance (view source)

Revision as of 23:41, 11 November 2015

9 bytes removed ,  11 November 2015
m
→‎BR Audits
Line 15: Line 15:


Here are some examples of the level of information that should be included in the BR audit statement in regards to BRs that the CA is not yet fully conforming to.
Here are some examples of the level of information that should be included in the BR audit statement in regards to BRs that the CA is not yet fully conforming to.
* BR 9.5 (section 6.1.3, 6.1.1.3 in BR version 1.3) – 1024-bit certs with validity beyond 2013 (in order to support legacy customer apps)
* BR 9.5 (section 6.1.5 in BR version 1.3) – 1024-bit certs with validity beyond 2013 (in order to support legacy customer apps)
* BR 13.2.6 (section 4.9.10 in BR version 1.3) - OCSP giving status “good” for unknown serial numbers.
* BR 13.2.6 (section 4.9.10 in BR version 1.3) - OCSP giving status “good” for unknown serial numbers.
* BR 16.5 (section 5 in BR version 1.3) - multi-factor authentication for '''all''' accounts capable of directly causing certificate issuance
* BR 16.5 (section 5 in BR version 1.3) - multi-factor authentication for '''all''' accounts capable of directly causing certificate issuance
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1105275"

Navigation menu