CA/Subordinate CA Checklist: Difference between revisions

CA/Subordinate CA Checklist (view source)

16 bytes added , 26 May 2010

m

no edit summary

Confirmed users, Administrators

5,526

edits

Revision as of 18:20, 26 May 2010 (view source) Kathleen Wilson (talk \| contribs) mNo edit summary ← Older edit		Revision as of 18:20, 26 May 2010 (view source) Kathleen Wilson (talk \| contribs) mNo edit summary Newer edit →
Line 1:		Line 1:
	In considering a root CA for inclusion, Mozilla must also evaluate the current subordinate CAs and the selection/approval criteria for future subordinate CAs. This wiki page outlines the information that needs to be provided by the root CA organization, and evaluated by the Mozilla community.		In considering a root certificate for inclusion in NSS, Mozilla must also evaluate the current subordinate CAs and the selection/approval criteria for future subordinate CAs. This wiki page outlines the information that needs to be provided by the root CA organization, and evaluated by the Mozilla community.

	In the situation where the root CA functions as a super CA such that their CA policies don't apply to the subordinate CAs (including auditing), then the root CA should not be considered for inclusion. Rather, the subordinate CAs may apply for inclusion themselves, as separate trust anchors.		In the situation where the root CA functions as a super CA such that their CA policies don't apply to the subordinate CAs (including auditing), then the root CA should not be considered for inclusion. Rather, the subordinate CAs may apply for inclusion themselves, as separate trust anchors.