=== Network Security Controls ===
CAs must maintain current best practices regarding for network security, and have qualified network security audits performed on a regular basis. The [https://www.cabforum.org/ CA/Browser Forum] has published a document called [https://www.cabforum.org/documents.html Network and Certificate System Security Requirements] which should be used as guidance for protecting network and supporting systems.
It is expected that CAs do the following on a regular basis: