Confirmed users, Administrators
5,526
edits
CA/Forbidden or Problematic Practices: Difference between revisions
Jump to navigation
Jump to search
CA/Forbidden or Problematic Practices (view source)
Revision as of 18:42, 10 March 2010
, 10 March 2010→Generic names for CAs
| Line 88: | Line 88: | ||
Our recommendation is that all CA names incorporate an organizational name or product brand name sufficiently unique to allow relatively straightforward identification of the CA. | Our recommendation is that all CA names incorporate an organizational name or product brand name sufficiently unique to allow relatively straightforward identification of the CA. | ||
Additionally, the issuer and subject information in the root certificate must provide clear indication about who owns or operates the certificate. Generic issuer and subject information inhibits the users' ability to establish a chain of trust, and to pursue complaints when appropriate. For instance, the following issuer information would not be acceptable in a root certificate to be included in NSS. | |||
* CN = Root CA | |||
* OU = Certification Authorities | |||
* OU = Services | |||
* O = admin | |||
=== Lack of Communication With End Users === | === Lack of Communication With End Users === | ||