Confirmed users, Administrators
5,526
edits
CA/Updating Root Store Policy: Difference between revisions
m
Updated due to MDSP migration
(Minor fixes) |
m (Updated due to MDSP migration) |
||
| Line 3: | Line 3: | ||
The general process that will be followed to update the [http://www.mozilla.org/projects/security/certs/policy/ Mozilla CA Certificate Policy] is as follows. Issues and potential changes will be tracked in the [https://github.com/mozilla/pkipolicy/issues policy issue tracker]. | The general process that will be followed to update the [http://www.mozilla.org/projects/security/certs/policy/ Mozilla CA Certificate Policy] is as follows. Issues and potential changes will be tracked in the [https://github.com/mozilla/pkipolicy/issues policy issue tracker]. | ||
# A Mozilla representative will bring forward an item for discussion in the [https://groups.google.com/ | # A Mozilla representative will bring forward an item for discussion in the [https://groups.google.com/a/mozilla.org/g/dev-security-policy Mozilla Dev Security Policy (MDSP)] forum. | ||
# There will be a discussion of how, if at all, to modify the policy for the item. | # There will be a discussion of how, if at all, to modify the policy for the item. | ||
# At some point, which may be at the start, a Mozilla representative will draft proposed text. | # At some point, which may be at the start, a Mozilla representative will draft proposed text. | ||
# A Mozilla representative will summarize a consensus that has been reached, and/or state the official position of Mozilla in either the discussion in [https://groups.google.com/ | # A Mozilla representative will summarize a consensus that has been reached, and/or state the official position of Mozilla in either the discussion in [https://groups.google.com/a/mozilla.org/g/dev-security-policy Mozilla Dev Security Policy (MDSP)] or in the [https://github.com/mozilla/pkipolicy/issues policy issue tracker], or both. | ||
# There will be a [https://bugzilla.mozilla.org/show_bug.cgi?id=868148 Mozilla internal review] of the policy changes | |||
# The [https://github.com/mozilla/pkipolicy/blob/master/rootstore/policy.md draft policy in Github] will be updated, if required. | # The [https://github.com/mozilla/pkipolicy/blob/master/rootstore/policy.md draft policy in Github] will be updated, if required. | ||
# The issue will be closed. | # The issue will be closed. | ||
| Line 12: | Line 13: | ||
At intervals, a new policy version will be released based on the current draft, along with a timeline for compliance. | At intervals, a new policy version will be released based on the current draft, along with a timeline for compliance. | ||
* A Mozilla representative will post notice in the [https://groups.google.com/ | * A Mozilla representative will post notice in the [https://groups.google.com/a/mozilla.org/g/dev-security-policy MDSP] forum. | ||
* A Mozilla representative | * A Mozilla representative may send [[CA/Communications|email communication to CAs]], to indicate the compliance schedule. | ||