Confirmed users, Administrators
5,526
edits
CA:ImprovingRevocation: Difference between revisions
Jump to navigation
Jump to search
m
added link to NSS product in bugzilla
(Removed sentence about CA support. Also removed reference to prefs as the current plan is to ship now-ish.) |
m (added link to NSS product in bugzilla) |
||
| Line 135: | Line 135: | ||
'''How to''' notify Mozilla of a revocation | '''How to''' notify Mozilla of a revocation | ||
* If the revocation is due to a security concern or of revocation of a website certificate whose revocation was not prompted by the certificate owner, send email to security@mozilla.org. | * If the revocation is due to a security concern or of revocation of a website certificate whose revocation was not prompted by the certificate owner, send email to security@mozilla.org. | ||
* To notify us of an intermediate certificate revocation, submit a bug report into the mozilla.org Bugzilla system, filed against the "CA Certificates" component of the "NSS" product. Whenever possible, the CA should send us the revoked certificate itself, along with the rfc5280 revocation reason code. If the CA cannot send us the revoked certificate, then the information listed below will be needed. | * To notify us of an intermediate certificate revocation, submit a bug report into the [https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS mozilla.org Bugzilla system], filed against the "CA Certificates" component of the "NSS" product. Whenever possible, the CA should send us the revoked certificate itself, along with the rfc5280 revocation reason code. If the CA cannot send us the revoked certificate, then the information listed below will be needed. | ||
** Serial number of the revoked certificate | ** Serial number of the revoked certificate | ||
** Link to the OCSP response for that serial number | ** Link to the OCSP response for that serial number | ||