CA/Subordinate CA Checklist: Difference between revisions

Jump to navigation Jump to search

CA/Subordinate CA Checklist (view source)

Revision as of 00:28, 25 October 2013

12 bytes added ,  25 October 2013
m
→‎Subordinate CAs that are not Technically Constrained
Line 40: Line 40:
#*Frequency of the audits for sub-CAs.
#*Frequency of the audits for sub-CAs.


== Subordinate CAs that are not Technically Constrained ==
== Third-Party Subordinate CAs that are not Technically Constrained ==


All certificates that are capable of being used to issue new certificates, that are not technically constrained as described in item #9 of [http://www.mozilla.org/projects/security/certs/policy/InclusionPolicy.html Mozilla's CA Certificate Inclusion Policy], and that directly or transitively chain to a certificate included in Mozilla's CA Certificate Program MUST be audited in accordance with [http://www.mozilla.org/projects/security/certs/policy/InclusionPolicy.html Mozilla's CA Certificate Policy] and MUST be publicly disclosed by the CA that has their certificate included in Mozilla's CA Certificate Program.  
All certificates that are capable of being used to issue new certificates, that are not technically constrained as described in item #9 of [http://www.mozilla.org/projects/security/certs/policy/InclusionPolicy.html Mozilla's CA Certificate Inclusion Policy], and that directly or transitively chain to a certificate included in Mozilla's CA Certificate Program MUST be audited in accordance with [http://www.mozilla.org/projects/security/certs/policy/InclusionPolicy.html Mozilla's CA Certificate Policy] and MUST be publicly disclosed by the CA that has their certificate included in Mozilla's CA Certificate Program.  
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.allizom.org/Special:MobileDiff/736705"

Navigation menu