CA:SalesforceCommunity: Difference between revisions

Jump to navigation Jump to search

CA:SalesforceCommunity (view source)

Revision as of 17:07, 1 December 2015

133 bytes added ,  1 December 2015
→‎Which intermediate certificate data should CAs add to Salesforce?
Line 62: Line 62:
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|should be added to OneCRL]]
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|should be added to OneCRL]]
* CAs should '''not''' add records for:
* CAs should '''not''' add records for:
** Intermediate certificates that are [[CA:CertificatePolicyV2.1#Technical_Constraints_or_Auditing.2FDisclosure_of_Intermediate_Certificates|Technically Constrained]] via Extended Key Usage and Name Constraint settings.
** Intermediate certificates that the CA cannot publicly disclose, and are [[CA:CertificatePolicyV2.1#Technical_Constraints_or_Auditing.2FDisclosure_of_Intermediate_Certificates|Technically Constrained]] via Extended Key Usage and Name Constraint settings. All intermediate certificate information added by CAs to Salesforce will be publicly available.
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|do not need to be added to OneCRL]]
** Revoked intermediate certificates that [[CA:ImprovingRevocation#When_To_Notify_Mozilla|do not need to be added to OneCRL]]
** Expired intermediate certificates
** Expired intermediate certificates
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/1107932"

Navigation menu