Confirmed users, Administrators
5,526
edits
CA/Required or Recommended Practices: Difference between revisions
CA/Required or Recommended Practices (view source)
Revision as of 00:26, 15 November 2012
, 15 November 2012→Network Security Controls
| Line 126: | Line 126: | ||
CAs must maintain current best practices regarding network security, and have qualified network security audits performed on a regular basis. The [https://www.cabforum.org/ CA/Browser Forum] has published a document called [https://www.cabforum.org/documents.html Network and Certificate System Security Requirements] which should be used a set of recommendations for protecting network and supporting systems. | CAs must maintain current best practices regarding network security, and have qualified network security audits performed on a regular basis. The [https://www.cabforum.org/ CA/Browser Forum] has published a document called [https://www.cabforum.org/documents.html Network and Certificate System Security Requirements] which should be used a set of recommendations for protecting network and supporting systems. | ||
CAs | It is expected that CAs do the following on a regular basis: | ||
* Check for mis-issuance of certificates, especially high-profile domains. | * Check for mis-issuance of certificates, especially high-profile domains. | ||
* Review network infrastructure, monitoring, passwords, etc. for signs of intrusion or weakness. | * Review network infrastructure, monitoring, passwords, etc. for signs of intrusion or weakness. | ||