Confirm, administrator
5,526
edits
Changes
Bugzilla component changed from CA Certificate Mis-issuance to CA Certificate Compliance
= CA Program Bugzilla Dashboards =
* CA Inclusion/Update Requests: https://wiki.mozilla.org/CA/Dashboard
* CA Mis-Issuance Compliance Bugs: https://wiki.mozilla.org/CA/ca-bugsIncident_Dashboard
= Bug Triage in Mozilla's CA Certificate Program =
<br /><br />
The [https://bugzilla.mozilla.org/ Bugzilla] products/components related to the CA Certificate Program are:
* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificate%20Mis-Issuance20Compliance&product=NSS NSS :: CA Certificate Mis-IssuanceCompliance] - Problems found in certificates issued by Certificate Authorities included in the default certificate store.
** Concerns that are raised about certificates being issued by CAs, and the resulting action items for the CAs.
* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificate%20Root%20Program&product=NSS NSS :: CA Certificate Root Program] - For Certificate Authorities to file requests asking for their certificates to be included in the default certificate store.
== CA Program Whiteboard Tags ==
=== CA Certificate Issuance Compliance Problems and Incidents ===
To report a concern about certificates being issued by a CA in Mozilla's Program:
* https://bugzilla.mozilla.org/enter_bug.cgi?product=NSS&component=CA%20Certificate%20Mis-Issuance 20Compliance
The bug summary should begin with the CA name, so sorting the bugs by Summary will sort the bugs by CA.
<br /><br />
Open CA Mis-Issuance Compliance bugs: https://wiki.mozilla.org/CA/Incident_Dashboard
<br /><br />
The whiteboard tags for [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&component=CA%20Certificate%20Mis-Issuance20Compliance&product=NSS NSS :: CA Certificate Mis-IssuanceCompliance] are:* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&query_format=advanced&component=CA%20Certificate%20Mis-Issuance20Compliance&product=NSS&status_whiteboard_type=allwordssubstr&status_whiteboard=ca-investigation [ca-investigation]] -- Concern has been raised about certificates that a CA has issued. Investigation and/or discussion in progress.* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&query_format=advanced&component=CA%20Certificate%20Mis-Issuance20Compliance&product=NSS&status_whiteboard_type=allwordssubstr&status_whiteboard=ca-incident-response [ca-incident-response]] -- The concern about a CA's certificates has been confirmed, and the CA has follow-up action items* [https://bugzilla.mozilla.org/buglist.cgi?resolution=---&query_format=advanced&query_format=advanced&component=CA%20Certificate%20Mis-Issuance20Compliance&product=NSS&status_whiteboard_type=allwordssubstr&status_whiteboard=compliance [ca-compliance]] -- The concern about a CA's certificates is in regards to failure to comply with Mozilla policy and/or the CA/Browser Forum's Baseline Requirements, and is determined to not be an imminent security concern.
=== Root Inclusion/Change requests and EV Treatment Enablement Requests===
