CA/Dashboard

From MozillaWiki
< CA
Revision as of 21:32, 26 April 2017 by Kathleen Wilson (talk | contribs) (Bugzilla Product/Component updated for CA Program Bugs)
Jump to navigation Jump to search

Dashboard for CA Inclusion/Update Requests

CAs are parties who are trusted to attest to the identity of websites. Mozilla has a rigorous process for CAs to request inclusion of their certificates, the details of which are described in the following:

To Be Assigned

When the whiteboard says "[ca-initial] -- OK to begin Information Verification", that means that it is ready for someone to begin the Information Verification. If you are able to do the Information Verification for the bug, then assign the bug to yourself, CC Kathleen on the bug, and update the whiteboard.

Full Query
ID Summary Status Assigned to Whiteboard Last change time
1736904 Add Algerian National Root CA certificate ASSIGNED Ben Wilson [ca-initial] [ccadb-case-00001010] 2025-12-02T04:53:37Z
1748579 Add Aspire root certificates ASSIGNED Ben Wilson [ca-initial] [ccadb-case-00000888] 2025-12-02T04:55:42Z
1870013 Add Saudi National SSL root CA ASSIGNED Ben Wilson [ca-initial] [ccadb-case-00001657] 2025-12-02T04:46:46Z
1883983 Add SOLUTI GLOBAL ROOT CA ASSIGNED Ben Wilson [ca-initial] [ccadb-case-00001713] 2025-12-02T04:48:22Z
1978757 Add VIDA CA Root ASSIGNED Ben Wilson [ca-initial] [ccadb-case-00002622] 2025-12-02T04:49:44Z
1978904 Add NETLOCK's S/MIME & TLS Root ASSIGNED Ben Wilson [ca-initial] [ccadb-case-00002590] 2025-12-02T04:42:12Z
1983217 Add Aretiico Group PLC and Aretiico Inc root certificates to Mozilla Root store ASSIGNED Ben Wilson [ca-initial] [ccadb-case-00002626] 2025-12-02T04:48:59Z
2001274 Add Cybertrust Japan Root CA Cybertrust iTrust TLS ECCP384 Root CA 2025 ASSIGNED Ben Wilson [ca-initial] 2025-11-21T17:37:05Z
2001275 Add Cybertrust Japan Root CA Cybertrust iTrust TLS RSA4096 Root CA 2025 ASSIGNED Ben Wilson [ca-initial] 2025-11-21T17:37:24Z

9 Total; 9 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Information Verification

The following CAs are in the Information Gathering and Verification Phase as described in CA:How_to_apply. These requests need to complete the Information Gathering and Verification Phase before they can be put into the queue for public discussion.

Full Query
ID Summary Status Assigned to Whiteboard Last change time
1348774 Add Thailand National Root CA - G1 ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00000110] 2025-12-02T04:39:05Z
1518460 Add SISP Root CA ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00000579] 2025-12-02T04:52:50Z
1532206 Add MSC Trustgate root certificate(s) ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002227] [ccadb-case-00002296] 2025-12-02T04:40:17Z
1602415 Add PostSignum Root QCA 4 and PostSignum Root QCA ECC R1 ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00000526] [ccadb-case-00001726] 2025-12-02T04:37:24Z
1707136 Add GSE SMIME Roots to Mozilla root store ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00000814] 2025-12-02T04:47:42Z
1880380 Add VikingCloud Root Certificates ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00001728] 2025-12-02T04:26:22Z
1889859 Add emSign Single-purpose Root CA Certificates ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00001777] 2025-12-02T04:32:36Z
1918570 Add SECOM SMIME RSA Root CA 2024 ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002025] 2025-12-02T04:17:02Z
1938884 Add NAVER Cloud Trust Services Root Certificates ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002128] 2025-12-02T04:25:14Z
1948085 Add Amazon EU Roots: RSA 2048 EU M1, ECDSA 256 EU M1, and ECDSA 384 EU M1 ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002242] 2025-12-02T04:28:33Z
1960408 Add IdenTrust single purpose roots ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002171] [ccadb-case-00002181] 2025-12-02T04:24:09Z
1968852 Add Telia Companys S/MIME & TLS Roots ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002426] 2025-12-02T04:30:20Z
1988341 Add ACCV ROOT RSA TLS 2024 and ACCV ROOT ECC TLS 2024 root certificates ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002687] 2025-12-02T04:42:53Z
1988361 Add SHECA Single-purpose Root CA Certificates ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002649] 2025-12-02T04:43:45Z
1990213 Add certSIGN Root CA G4 root certificate ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002680] 2025-12-02T04:29:21Z
1992971 Add Actalis TLS Root CAs 2025 and Actalis SMIME Root CAs 2025 ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002732] 2025-12-02T04:19:05Z
1996117 Add GoDaddy and Starfield TLS R1 ASSIGNED Ben Wilson [ca-verifying] [ccadb-case-00002632] 2025-12-02T04:22:40Z

17 Total; 17 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Information Verification on Hold (Super CA)

Full Query
ID Summary Status Assigned to Whiteboard Last change time
1449941 Add Fina Root CA certificate ASSIGNED Ben Wilson [ca-hold] [ccadb-case-00000310] 2025-12-02T04:50:29Z
1565871 Add CCA ROOT CA India ASSIGNED Ben Wilson [ca-hold] [ccadb-case-00001009] [ccadb-case-00001127] 2025-12-02T04:51:49Z
1592138 Add Macao Post eSignTrust root certificate ASSIGNED Ben Wilson [ca-hold] [ccadb-case-00000396] 2025-12-02T04:45:16Z
1674669 Add Autoridade Certificadora Raiz Brasileira root certificate ASSIGNED Ben Wilson [ca-hold] -- Super-CA 2024-12-02T15:51:04Z

4 Total; 4 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Ready for Public Discussion

Queue for discussion:

  • Click on the "Whiteboard" column to sort
    • Whiteboard tags with "-new" indicate that the CA does not currently have a root certificate in Mozilla's program.
    • Whiteboard tags without "-new" indicate that the CA already has a root certificate in Mozilla's program, so they have previously been through Mozilla's rigorous vetting process, and will be given priority in the discussions.
  • In general:
    • Discussions will be started according to the date when the bug became ready for discussion (the date listed in the whiteboard); i.e. the oldest date will typically be the next discussion to start.
    • Only one or two of the "-new" requests may be in discussion at any given point. The amount of time that each discussion takes varies dramatically depending on the number of reviewers contributing to the discussion, and the types of concerns that are raised.
    • Requests that are from CAs that already have roots included in NSS may be discussed in parallel, so several of these discussions can happen at the same time.
Full Query
ID Summary Status Assigned to Whiteboard Last change time
1845081 Add MOIS SSL Root CA ASSIGNED Ben Wilson [ca-ready-for-discussion] [ccadb-case-00001323] 2025-12-02T04:27:23Z
1925173 Add Cybertrust Japan SecureSign Root CA16 ASSIGNED Ben Wilson [ca-ready-for-discussion] [ccadb-case-00002139] 2025-12-02T04:31:24Z
1941966 SECOM: New Subordinate CA Request (JPRS) ASSIGNED Ben Wilson [ca-ready-for-discussion] 2025-11-28T09:52:01Z

3 Total; 3 Open (100%); 0 Resolved (0%); 0 Verified (0%);


In Public Discussion

Full Query
ID Summary Status Assigned to Whiteboard Last change time
1873057 Add Microsec "e-Szigno TLS Root CA 2023" ASSIGNED Ben Wilson [ca-in-discussion] [ccadb-case-00001692] 2025-12-02T04:34:25Z

1 Total; 1 Open (100%); 0 Resolved (0%); 0 Verified (0%);


Discussions On Hold

The following list shows the CA inclusion/update requests that are in public discussion, but are waiting for the CA to provide additional or updated information that was asked for during the discussion, such as updating or translating the CP/CPS, or completing a more current or full audit. The discussion may continue as soon as the CA provides the additional or updated information.

No results.

0 Total; 0 Open (0%); 0 Resolved (0%); 0 Verified (0%);


Pending Approval

No results.

0 Total; 0 Open (0%); 0 Resolved (0%); 0 Verified (0%);


Approved and Pending Code Changes

No results.

0 Total; 0 Open (0%); 0 Resolved (0%); 0 Verified (0%);


Included CAs

Spreadsheet of all included root certificates:

Roots Being Removed

Upcoming Root Cert Removals:

Certs that have been Removed:

Retrieved from "https://wiki.mozilla.org/index.php?title=CA/Dashboard&oldid=1169497"