Changes

CAs must supply the complete A Certificate Policy (CP) is a named set of rules that indicate the applicability of a certificate to a particular community and /or class of applications with common security requirements. A Certification Practice Practices Statement (CPS) is a document that describes the practices that a Certification Authority (CA) employs in issuing, managing, revoking, and renewing or re-keying certificates. CAs must supply a complete CPS, or also a CP, or a combined CP/CPS ("CP/CPS" herein) containing sufficient information to determine whether and how the CA complies with the Mozilla policy requirements.

* The format of the CP/CPS document must be PDF or another suitable format for reading documents. CAs should ''not'' use Microsoft Word or other formats intended primarily for editable documents.

* As part of the inclusion process and the [https://wiki.mozilla.org/CA/BR_SelfCompliance_Self-Assessment Baseline Requirements CA Compliance Self-Assessment], CAs must provide references to the CP/CPS sections (e.g., by section number and/or page number) that address the requirements of Mozilla policy and the Baseline Requirements.

Section 3.3 of [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/ #33-cps-and-cpses Section 3.3 of Mozilla's Root Store Policy] states: "CPs requires that a CA review and CPSes MUST be reviewed and updated as necessary update its CP/CPS at least once every year, as required by the Baseline Requirementstwelve months. CAs MUST must "indicate that this has happened by incrementing the version number and adding a dated changelog entry, even if no other changes are made to the document."This is also required by section 2.3 of the [https://cabforum.org/baseline-requirements-documents Baseline Requirements].