Confirmed users
377
edits
CA: Difference between revisions
m
→Program Administration: added text
(→Information for CAs: Added page for vulnerability and security incident disclosure) |
m (→Program Administration: added text) |
||
| (9 intermediate revisions by 2 users not shown) | |||
| Line 6: | Line 6: | ||
== Policy == | == Policy == | ||
* [https://www.mozilla.org/projects/security/certs/policy/ Root Store Policy] (current stable version: 2. | * [https://www.mozilla.org/projects/security/certs/policy/ Root Store Policy] (current stable version: 2.9) | ||
* [[CA/Communications | CA Communications]] and their responses. Such communications may also set policy in advance of it being included in the Root Store Policy. | * [[CA/Communications | CA Communications]] and their responses. Such communications may also set policy in advance of it being included in the Root Store Policy. | ||
* [[CA/Root_Store_Policy_Archive|Root Store Policy Archive]] | * [[CA/Root_Store_Policy_Archive|Root Store Policy Archive]] | ||
| Line 31: | Line 31: | ||
* [[CA/Certificate_Change_Requests|Certificate Change Requests]] as tracked in the CCADB | * [[CA/Certificate_Change_Requests|Certificate Change Requests]] as tracked in the CCADB | ||
* [[CA/Incident_Dashboard|Incident and Compliance Dashboard]] | * [[CA/Incident_Dashboard|Incident and Compliance Dashboard]] | ||
** [[CA/Maintenance_and_Enforcement#Issues_Lists|CA Issues Lists]] | |||
* [[CA/CCADB_Dashboard|CCADB Dashboard]] | * [[CA/CCADB_Dashboard|CCADB Dashboard]] | ||
* [[CA/Bug_Triage|Bugzilla Bug Triage Process]] | * [[CA/Bug_Triage|Bugzilla Bug Triage Process]] - also lists whiteboard tags | ||
* [[CA/Email_templates|Email Templates used by CCADB]] | * [[CA/Email_templates|Email Templates used by CCADB]] | ||
| Line 53: | Line 54: | ||
* [[CA/External_Sub_CAs|Approval Process for Externally Operated Subordinate CAs]] | * [[CA/External_Sub_CAs|Approval Process for Externally Operated Subordinate CAs]] | ||
* [[CA/Certificate_Change_Process|Change or Remove an Included Root Certificate]] | * [[CA/Certificate_Change_Process|Change or Remove an Included Root Certificate]] | ||
* [[CA/Root_CA_Lifecycles|Root CA Lifecycles | * [[CA/Root_CA_Lifecycles|Root CA Lifecycles]] | ||
* [[CA/Required_or_Recommended_Practices|Required or Recommended CA Practices]] | * [[CA/Required_or_Recommended_Practices|Required or Recommended CA Practices]] | ||
* [[CA/Root_Inclusion_Considerations|Root Inclusion Considerations]] -- This page is intended to be used as a tool for identifying when a CA Operator's root inclusion request should be denied, or when a CA's root certificate should be removed from Mozilla's root store. | * [[CA/Root_Inclusion_Considerations|Root Inclusion Considerations]] -- This page is intended to be used as a tool for identifying when a CA Operator's root inclusion request should be denied, or when a CA's root certificate should be removed from Mozilla's root store. | ||
| Line 64: | Line 65: | ||
** [[CA/Revocation_Reasons|Revocation Reasons for TLS Server Certificates]] | ** [[CA/Revocation_Reasons|Revocation Reasons for TLS Server Certificates]] | ||
* [[PSM:EV_Testing_Easy_Version|EV Readiness Test]] | * [[PSM:EV_Testing_Easy_Version|EV Readiness Test]] | ||
* [https://github.com/digicert/pkilint PKI Lint Tool for TLS & S/MIME] - source code download | |||
* [https://github.com/certlint/certlint BR Lint Certificate Test] - source code download | * [https://github.com/certlint/certlint BR Lint Certificate Test] - source code download | ||
* [https://github.com/zmap/zlint ZLint - Certificate Test of Mozilla's and others' requirements] - source code download | * [https://github.com/zmap/zlint ZLint - Certificate Test of Mozilla's and others' requirements] - source code download | ||
| Line 84: | Line 87: | ||
* [[CA/Changing_Trust_Settings|Changing Certificate Trust Settings in Firefox]] | * [[CA/Changing_Trust_Settings|Changing Certificate Trust Settings in Firefox]] | ||
** [[CA/Changing_Trust_Settings#Trusting_an_Additional_Root_Certificate|Manually import a root certificate into Firefox]] | ** [[CA/Changing_Trust_Settings#Trusting_an_Additional_Root_Certificate|Manually import a root certificate into Firefox]] | ||
* [https:// | * [https://certviewer-dot-ccadb-231121.appspot.com/certviewer Certificate Viewer] -- can also be installed/run locally (see [https://github.com/mozilla/CCADB-Tools/tree/master/certViewer ReadMe]) | ||
* [https://www.ssllabs.com/ssltest/analyze.html Qualys SSL Server Quality Checker] | * [https://www.ssllabs.com/ssltest/analyze.html Qualys SSL Server Quality Checker] | ||
* [https://observatory.mozilla.org/ Mozilla SSL Server Quality Checker] | * [https://observatory.mozilla.org/ Mozilla SSL Server Quality Checker] | ||