Confirm
344
edits
Changes
→Audit Criteria: Updated language
* The CA must indicate exactly which criteria they are being evaluated against (i.e., which of the criteria listed in the Mozilla policy).
* All documents supplied as evidence must be publicly available.
* Documents purporting to be from the CA's auditor (or other evaluator) should be available directly from the auditor (e.g., as documents downloadable from the auditor's web sitewebsite or from CPA Canada's Webtrust seal repository).
==== Complete Audit History ====
* Providing the sequence of audit statements on the CA's website.
* Attaching the sequence of audit statements to the root inclusion request (Bugzilla Bug).
CAs must also provide audit information in compliance with [https://www.ccadb.org/policy#5-policies-practices-and-audit-information section 5 of the CCADB Policy].
=== Revocation of Compromised Certificates ===
