Confirm, administrator
5,526
edits
Changes
m
minor update
* There were no policies specifying the information that CAs should provide to their certificate subscribers about revocation reasons
The following CRLRevocation Reasons may be specified in the CRL reasonCode extension for end-entity TLS certificates. They MUST be specified under the conditions detailed in section 6.1.1 of Mozilla's Root Store Policy(starting with version 2.8).
* keyCompromise (RFC 5280 CRLReason #1)
* privilegeWithdrawn (RFC 5280 CRLReason #9)
