Confirm, administrator
5,526
edits
Changes
m
→Add a Trust Bit
=== Add a Trust Bit ===
When a root certificate is included in NSS, one or more of the three trust bits (websites, email, code signing) are enabled. It is common for a CA to request inclusion with a subset of the trust bits enabled, and then later request that an additional trust bit be enabled. A The following steps outline how a CA may request to enable additional trust bits for a root certificate that is included in NSS, by following the following steps.
# Update the CP/CPS to reflect the policies for the additional trust bits, and make sure that the additions to the CP/CPS follow the [http://www.mozilla.org/projects/security/certs/policy/ Mozilla CA Certificate Policy], especially section 7.
#* In the bug description include links to the updated CP/CPS and the updated audit.
# The request will go through the [[ CA:How_to_apply#Information_gathering_and_verification|Information Gathering and Verification]], [[CA:How_to_apply#Public_discussion|Public Discussion]], and [[CA:How_to_apply#Inclusion|Inclusion]] phases as described in CA:How_to_apply.
=== Enable EV ===
