CA:FAQ: Difference between revisions

CA:FAQ (view source)

704 bytes removed , 25 August 2011

Confirmed users, Administrators

5,526

edits

@@ Line 70: / Line 70: @@
 Mozilla's [[Module_Owners_Activities_Modules#CA_Certificates_Module| CA Certificates Module]] is used by all Mozilla software that includes root certificates. It includes evaluation of new root inclusion requests, including and modifying trust bits of root certificates, maintaining links to current [https://spreadsheets.google.com/pub?key=ttwCVzDVuWzZYaDosdU6e3w&single=true&gid=0&output=html documentation and audit statements] for included root certificates, and removal of root certificates as needed. The software for including root certificates and setting trust bits is in the [[NSS | Network Security Services (NSS)]] library.
-For a CA's root certificate to be considered for inclusion in Mozilla products, the CA makes a formal request by filing a bug in [[CA:How_to_apply | Mozilla's Bugzilla system]]. Then the owners or peers of Mozilla's [[Module_Owners_Activities_Modules#CA_Certificates_Module| CA Certificates Module]] evaluate the information provided by the CA and conduct a public discussion in the mozilla.dev.security.policy forum regarding the request. After considering the information that the CA has presented and the recommendations of the Mozilla community, the module owners or peers determine if the root certificate should be included in Mozilla software products and which trust bits should be set on them.
 === What is the Mozilla CA Certificate Policy? ===