Confirmed users, Administrators
5,526
edits
CA/Audit Letter Validation: Difference between revisions
Jump to navigation
Jump to search
m
Adding common ALV findings
(Adding common ALV findings) |
m (Adding common ALV findings) |
||
| Line 61: | Line 61: | ||
|- | |- | ||
| Failed to validate EKU ... because the standard names and standard policies are not found in the audit letters || ALV was unable to find the specific text (case insensitive) that it looks for for each EKU. For example, "319 411-1 v1.1.1, dvcp;ovcp;ptc-br" || Make sure that the audit statement correctly indicates the audit criteria that was used, and that it satisfies [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/#312-required-audits Mozilla's requirements]. | | Failed to validate EKU ... because the standard names and standard policies are not found in the audit letters || ALV was unable to find the specific text (case insensitive) that it looks for for each EKU. For example, "319 411-1 v1.1.1, dvcp;ovcp;ptc-br" || Make sure that the audit statement correctly indicates the audit criteria that was used, and that it satisfies [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/#312-required-audits Mozilla's requirements]. | ||
Examples of the policy information that ALV looks for (depending on | Examples of the policy information that ALV looks for (depending on derived trust bits): | ||
* WebTrust Principles and Criteria for Certification Authorities v2.1 | * WebTrust Principles and Criteria for Certification Authorities v2.1 | ||
* WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security v2.2 | * WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security v2.2 | ||