Confirm, administrator
5,526
edits
Changes
Added sub-section about CP/CPS revision table requirement
* The CP/CPS must be available in an English version. The non-English version may be authoritative (as that's the working language of the CA) but the CA is responsible for ensuring that the translation is not materially different from the authoritative version of the document.
* The CA must provide references to the CP/CPS sections (e.g., by section number and/or page number) that address the requirements of the Mozilla policy.
===== CP/CPS Revision Table =====
Section 3.3 of [https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy/ Mozilla's Root Store Policy] states: "CPs and CPSes MUST be reviewed and updated as necessary at least once every year, as required by the Baseline Requirements. CAs MUST indicate that this has happened by incrementing the version number and adding a dated changelog entry, even if no other changes are made to the document."
===== CAA Domains listed in CP/CPS =====
Section 2.2 of the [https://cabforum.org/baseline-requirements-documents/ BRs] states: "CA's Certificate Policy and/or Certification Practice
Statement ... shall clearly specify the set of Issuer Domain Names that the CA recognises in CAA "issue" or
"issuewild" records as permitting it to issue.
===== CP/CPS Documents will be Reviewed! =====
