CA/Audit Letter Validation: Difference between revisions

CA/Audit Letter Validation (view source)

35 bytes added , 6 January 2020

m

updated etsi examples list

Confirmed users, Administrators

5,526

edits

@@ Line 62: / Line 62: @@
 | Failed to validate EKU ... because the standard names and standard policies are not found in the audit letters  || ALV was unable to find the specific text (case insensitive) that it looks for for each EKU. For example, "319 411-1 v1.1.1, dvcp;ovcp;ptc-br" || Make sure that the audit statement correctly indicates the audit criteria that was used, and that it satisfies [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/#312-required-audits Mozilla's requirements].
 Examples of the policy information that ALV looks for (depending on derived trust bits):
-* EN 319 411-1 V1.2.2, LCP;DVCP
+* ETSI EN 319 411-1 V1.2.2, LCP;DVCP
-* EN 319 411-1 V1.2.2, LCP;OVCP;EVCP
+* ETSI EN 319 411-1 V1.2.2, LCP;OVCP;EVCP
-* EN 319 411-1 V1.2.2, NCP;EVCP
+* ETSI EN 319 411-1 V1.2.2, NCP;EVCP
-* EN 319 411-1 V1.2.2, NCP;NCP+
+* ETSI EN 319 411-1 V1.2.2, NCP;NCP+
-* EN 319 411-2 V2.2.2, QCP-w
+* ETSI EN 319 411-2 V2.2.2, QCP-w
-* EN 319 411-2 V2.2.2, QCP-w; EVCP
+* ETSI EN 319 411-2 V2.2.2, QCP-w; EVCP
-* EN 319 411-2 V2.2.2, QCP-l;QCP-l-qscd;QCP-n;QCP-n-qscd
+* ETSI EN 319 411-2 V2.2.2, QCP-l;QCP-l-qscd;QCP-n;QCP-n-qscd
 * WebTrust Principles and Criteria for Certification Authorities v2.1
 * WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security v2.2