Confirm
384
edits
Changes
→Compliance Problems and Incidents: Added mention of new whiteboard tags
Open Auditor Compliance bugs: https://wiki.mozilla.org/CA/Auditor_Compliance
<br /><br />
The whiteboard tags for [https://bugzilla.mozilla.org/buglist.cgi?query_format=advanced&component=CA%20Certificate%20Compliance CA Program :: CA Certificate Compliance] areinclude:
* [https://bugzilla.mozilla.org/buglist.cgi?query_format=advanced&query_format=advanced&component=CA%20Certificate%20Compliance&status_whiteboard_type=allwordssubstr&status_whiteboard=ca-compliance [ca-compliance]] -- For concerns about a CA's certificates failing to comply with [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/ Mozilla's CA Certificate Policy] and/or the [https://cabforum.org/baseline-requirements-documents/ CA/Browser Forum's Baseline Requirements], and it is not considered to be an [https://www.mozilla.org/en-US/security/#For_Developers imminent security concern].
* [https://bugzilla.mozilla.org/buglist.cgi?query_format=advanced&query_format=advanced&component=CA%20Certificate%20Compliance&status_whiteboard_type=allwordssubstr&status_whiteboard=auditor-compliance [auditor-compliance]] -- For concerns about an auditor failing to properly detect and report on CA compliance issues that occurred during one or more periods when the CA was audited.
* [https://bugzilla.mozilla.org/buglist.cgi?query_format=advanced&query_format=advanced&component=CA%20Certificate%20Compliance&status_whiteboard_type=allwordssubstr&status_whiteboard=audit-delay [audit-delay]] -- appended after [ca-compliance] when a CA is unable to provide audit statements within one year and 3 months of the previous audit period end date.
* [https://bugzilla.mozilla.org/buglist.cgi?query_format=advanced&query_format=advanced&component=CA%20Certificate%20Compliance&status_whiteboard_type=allwordssubstr&status_whiteboard=covid-19 [covid-19]] -- appended after [ca-compliance], [audit-delay], or [ca-revocation-delay] when delays are due to mandated restrictions regarding COVID-19.
New Whiteboard Tags include:
* [ca-misissuance] mis-issuance of a CA certificate
* [dv-misissuance] mis-issuance of a DV certificate
* [ov-misissuance] mis-issuance of an OV end-entity certificate
* [ev-misissuance] mis-issuance of an EV end-entity certificate
* [crl-failure] failure to provide certificate status via CRL; malformed, expired CRL
* [ocsp-failure] failure to provide certificate status via OCSP; malformed, expired OCSP
* [policy-failure] failure to update CP/CPS annually, failure to comply with practice in CP/CPS, misunderstanding requirements, failed implementation
* [disclosure-failure] failure to disclose an ICA, failure to report revocation of an ICA, non-disclosure-of-EV-sources, miscommunication, poor communication, etc.
* [audit-failure] failure to perform an audit, failure to upload audits, etc.
= Root Inclusion/Change requests and EV Treatment Enablement Requests=
