Confirm
344
edits
Changes
→Compliance Self-Assessment - Annual: Additional instructions about completing compliance self-assessments
== Compliance Self-Assessment - Annual ==
CAs with included root certificates that have the websites trust bit set must do an annual self-assessment of their compliance with the BRs and Mozilla's Root Store Policy using the above template. When completed, the self-assessment should be uploaded to CA's Bugzilla bug that is used for storing the CA's audit documents, if one exists. Otherwise, a new bug can be created within the [https://bugzilla.mozilla.org/enter_bug.cgi?product=CA+Program&component=CA+Documents "CA Documents" component of the CA Program] in Bugzilla.
The BRs state: "The CA SHALL develop, implement, enforce, and annually update a Certificate Policy and/or Certification Practice Statement that describes in detail how the CA implements the latest version of these Requirements."
CAs with included root certificates that have the websites trust bit set must do an annual self-assessment of their compliance with the BRs and Mozilla's Root Store Policy using the above template, and must update their CP and CPS documents at least once every year. You should indicate that this has happened by incrementing the version number and adding a dated changelog entry, even if no other changes are made to the CP and CPS documents.
== Compliance Self-Assessment - Root Inclusion or Update ==
