Confirm, administrator
5,526
edits
Changes
Updated to match current process
== Add a Trust Bit ==
When a root certificate is included in [https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS NSS], one or more of the trust bits (websites, email) are enabled. It is common for a CA to request inclusion with a subset one of the trust bits enabled, and then later request that an additional the other trust bit be enabled. The following steps outline how a CA may request to enable an additional trust bits bit for a root certificate that is included in NSS.
# Do some initial preparations before you formally submit a request:
#* Review [[CA/Required_or_Recommended_Practices|Required Practices]] and [[CA/Forbidden_or_Problematic_Practices|Forbidden Practices]].
#* Have the annual audit cover the updated CP/CPS.
#* Make sure that the audit and audit statements meet the requirements stated in [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy#31-audits Mozilla's Root Store Policy].# Once you are ready, formally [[CA/Application_Instructions#Create_Root_Inclusion.2FUpdate_Request|submit your request using the [http://bugzilla.mozilla.org/ Bugzilla issue tracking system:]]
#* Click on the "Create a new bug report" link in [[CA/Application_Instructions#Create_Root_Inclusion.2FUpdate_Request|Application Instructions]].
#* Set the bug summary to "Enable trust bits for <name of your root>".
#* In Provide all of the bug description, include required information by creating a reference to the original root-inclusion bug number.[[CA/Information_Checklist#* In the bug description, include links to the updated CP/CPS and Create_a_Root_Inclusion_Case|Root Inclusion Case in the updated audit statementsCCADB]].
# The request will go through the [[CA/Application_Verification#Information_Verification|Information Verification]], [[CA/Application_Verification#Detailed_Review|Detailed Review]], [[CA/Application_Verification#Public_discussion|Public Discussion]], and [[CA/Application_Verification#NSS_and_PSM_Bug_Creation|Inclusion]] phases as described in [[CA/Application_Process#Process_Overview|Application Process Overview]].
