Confirmed users, Administrators
5,526
edits
CA/Root Store Policy Archive: Difference between revisions
Jump to navigation
Jump to search
m
CA/Root Store Policy Archive (view source)
Revision as of 00:22, 13 November 2013
, 13 November 2013→Consider for Version 2.3
| Line 76: | Line 76: | ||
The following items will be discussed in regards to version 2.3 of [http://www.mozilla.org/projects/security/certs/policy/WorkInProgress Mozilla's CA Certificate Policy.] | The following items will be discussed in regards to version 2.3 of [http://www.mozilla.org/projects/security/certs/policy/WorkInProgress Mozilla's CA Certificate Policy.] | ||
* Deprecate SHA-1 Hash Algorithms in certs. [http://social.technet.microsoft.com/wiki/contents/articles/3281.introduction-to-the-microsoft-root-certificate-program.aspx MS Policy:] "NEW The [http://blogs.technet.com/b/ | * Deprecate SHA-1 Hash Algorithms in certs. [http://social.technet.microsoft.com/wiki/contents/articles/3281.introduction-to-the-microsoft-root-certificate-program.aspx MS Policy:] "NEW The [http://blogs.technet.com/b/pki/archive/2013/11/12/sha1-deprecation-policy.aspx Security Research and Defense (SRD) Blog] now describes the SHA1 Deprecation Policy. Microsoft Security Advisory [https://technet.microsoft.com/en-us/security/advisory/2880823 2880823] also gives a bit more detail." | ||
* Policy changes regarding [https://wiki.mozilla.org/CA:ImprovingRevocation Improving Revocation.] | * Policy changes regarding [https://wiki.mozilla.org/CA:ImprovingRevocation Improving Revocation.] | ||
* Audit equivalencies from Government CAs MUST incorporate the CABF BR into their local audit criteria. | * Audit equivalencies from Government CAs MUST incorporate the CABF BR into their local audit criteria. | ||