Changes

CA/Revocation Reasons

141 bytes added, 23:55, 25 May 2022

m

Added further clarifications

#* Unless the CA receives evidence of private key compromise the CA must not revoke all instances of that key across all other subscribers

# The certificate subscriber previously requested revocation without demonstrating possession of the private key, and later sends another revocation request which does demonstrate possession of the private key.

#* ~~The~~ After receiving the revocation request with demonstrated possession of the private key, the CA must ~~then~~ revoke all instances of that key across all subscribers

# The certificate subscriber previously requested revocation without demonstrating possession of the private key, and later the CA receives evidence of private key compromise.

#* ~~The~~ After receiving verifiable evidence of private key compromise, the CA must ~~then~~ revoke all instances of that key across all subscribers

=== Possession of Private Key ===

Kathleen Wilson

Confirm, administrator

5,526

edits

Changes

CA/Revocation Reasons

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

How to Contribute

MozillaWiki

Around Mozilla

Tools