CA/Audit Letter Validation: Difference between revisions

Jump to navigation Jump to search

CA/Audit Letter Validation (view source)

Revision as of 20:07, 6 January 2020

229 bytes removed ,  6 January 2020
updated list of example policy strings
m (added link)
(updated list of example policy strings)
Line 62: Line 62:
| Failed to validate EKU ... because the standard names and standard policies are not found in the audit letters  || ALV was unable to find the specific text (case insensitive) that it looks for for each EKU. For example, "319 411-1 v1.1.1, dvcp;ovcp;ptc-br" || Make sure that the audit statement correctly indicates the audit criteria that was used, and that it satisfies [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/#312-required-audits Mozilla's requirements].  
| Failed to validate EKU ... because the standard names and standard policies are not found in the audit letters  || ALV was unable to find the specific text (case insensitive) that it looks for for each EKU. For example, "319 411-1 v1.1.1, dvcp;ovcp;ptc-br" || Make sure that the audit statement correctly indicates the audit criteria that was used, and that it satisfies [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/#312-required-audits Mozilla's requirements].  
Examples of the policy information that ALV looks for (depending on derived trust bits):   
Examples of the policy information that ALV looks for (depending on derived trust bits):   
* EN 319 411-1 V1.2.2, DVCP;OVCP;PTC-BR
* EN 319 411-1 V1.2.2, EVCP;EVCP+
* EN 319 411-1 V1.2.2, LCP;NCP;NCP+
* EN 319 411-2 V2.2.2, QCP-n;QCP-l;QCP-w;QCP-n-qscd;QCP-l-qscd
* TS 102 042 V2.4.1, LCP;NCP;NCP+
* WebTrust Principles and Criteria for Certification Authorities v2.1
* WebTrust Principles and Criteria for Certification Authorities v2.1
* WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security v2.2
* WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security v2.2
* WebTrust Principles and Criteria for Certification Authorities - Extended Validation SSL v1.6.2
* WebTrust Principles and Criteria for Certification Authorities - Extended Validation SSL v1.6.2
* WebTrust Principles and Criteria for Certification Authorities – Extended Validation Code Signing v1.4.1
* WebTrust for Certification Authorities - Publicly Trusted Code Signing Certificates v1.0.1
* EN 319 411-2 V2.2.2, QCP-n;QCP-l;QCP-w;QCP-n-qscd;QCP-l-qscd
* EN 319 411-1 V1.2.2, DVCP;OVCP;PTC-BR
* EN 319 411-1 V1.2.2 EVCP;EVCP+
* EN 319 411-1 V1.2.2, EVCG
* EN 319 411-1 V1.1.1, LCP;NCP;NCP+
* TS 102 042 V2.4.1, LCP;NCP;NCP+
|-
|-
| Auditor Not Found || ALV was unable to find the specified auditor name in the audit statement || Ensure the correct Auditor is selected in the record and that it matches the auditor name recorded in your audit statement. If both look correct ask a root store manager to update the auditor's information in the CCADB.
| Auditor Not Found || ALV was unable to find the specified auditor name in the audit statement || Ensure the correct Auditor is selected in the record and that it matches the auditor name recorded in your audit statement. If both look correct ask a root store manager to update the auditor's information in the CCADB.
Kathleen Wilson
Confirmed users, Administrators
5,526

edits

Retrieved from "https://dev.wikimo.nonprod.webservices.mozgcp.net/Special:MobileDiff/1221921"

Navigation menu