Confirm, administrator
5,526
edits
Changes
re-organization
The [https://bugzilla.mozilla.org/ Bugzilla] products/components related to the CA Certificate Program are:
* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificate%20Mis-Issuance&product=mozilla.org mozilla.org :: CA Certificate Mis-Issuance] - Problems found in certificates issued by Certificate Authorities included in the default certificate store.
** Concerns that are raised about certificates being issued by CAs, and the resulting action items for the CAs.
* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificates&product=mozilla.org mozilla.org :: CA Certificates] - For Certificate Authorities to file requests asking for their certificates to be included in the default certificate store.
** [[CA|Root inclusion/change requests]]. When approved, the actual code changes are requested via a new [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificates&product=NSS Bugzilla Bug for NSS].
** [[CA:How_to_apply#Enable_EV_for_an_included_root|EV treatment enablement requests]]. When approved, the actual code changes are requested via a new [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=Security%3A%20PSM&product=Core Bugzilla Bug for PSM].
** [[CA:SalesforceCommunity#Documents|CA Audit statements]], when they are not published on [http://www.webtrust.org/ webtrust.org], the auditor's website, or the CA's website.
** CA Program related concerns or action items.
* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificates&product=NSS NSS :: CA Certificates] - For actual code changes to NSS. Kathleen should be the only person filing these bugs on behalf of the CA Program.
The CA Certificate Program deviates from Mozilla's standardized [[Bugmasters/Process/Triage|Bugzilla Bug Triage]] process by not using bug priorities (P1, P2, P3, or P5), because [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificates&product=mozilla.org CA Certificate bugs] do not directly include code changes to Mozilla's [[RapidRelease/Calendar|release trains]] or iterations.
