CA/Revocation Reasons: Difference between revisions

Jump to navigation Jump to search

CA/Revocation Reasons (view source)

Revision as of 23:52, 23 March 2022

76 bytes removed ,  23 March 2022
continued drafting text
(continued drafting text)
(continued drafting text)
Line 20: Line 20:
** This MUST be the default value in tools provided by the CA.
** This MUST be the default value in tools provided by the CA.
** Certificate subscribers are not required to provide a revocation reason, unless their private key has been compromised.
** Certificate subscribers are not required to provide a revocation reason, unless their private key has been compromised.
** We expect that there will not be a reason provided for most revocations.
* keyCompromise (RFC 5280 CRLReason #1)
* keyCompromise (RFC 5280 CRLReason #1)
** The certificate subscriber MUST choose the "keyCompromise" revocation reason when they become aware of or have reason to believe that the private key of their certificate has been compromised, e.g. an unauthorized person has had access to the private key of their certificate.
** The certificate subscriber MUST choose the "keyCompromise" revocation reason when they become aware of or have reason to believe that the private key of their certificate has been compromised, e.g. an unauthorized person has had access to the private key of their certificate.
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1241408"

Navigation menu