在 2017年4月4日星期二 UTC+8上午1:47:34,Kathleen Wilson写道:
> I updated https://wiki.mozilla.org/CA:BRs-Self-Assessment to add a section 
> called 'Annual BR Self Assessment', which states: 
> "CAs with included root certificates that have the Websites trust bit set 
> must do an annual self-assessment of their compliance with the BRs, and must 
> update their CP and CPS documents at least once every year."
> 
> I added a section about this to the root inclusion/update Information 
> Checklist:
> https://wiki.mozilla.org/CA:Information_checklist#Baseline_Requirements_Self_Assessement
> 
> And I updated ACTION 2 of the CA Communication
> https://mozillacaprogram.secure.force.com/Communications/CACommunicationSurveySample?CACommunicationId=a05o000003WrzBC
> to include a link to this.
> 
> Thanks,
> Kathleen

Hi Kathleen

We have a question about completing the BR self assessment, is it necessary 
that all the BRs requirements appear in relevant sections of the CP/CPS? Or for 
some BRs requirements that are not specifically disclosed in the CP/CPS, CAs 
can explain their rules and practices to show that they meet or exceed these 
requirements?
Thanks.
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy

Reply via email to