"auditing standards that underlie the accepted audit schemes found in
Section 8.1"
This is obviously a error in the BRs. That language is taken from
Section 8.1 and there is no list of schemes in 8.1.
8.4 does have a list of schemes:
1. WebTrust for Certification Authorities v2.0;
2. A national
On Wed, Feb 22, 2017 at 8:32 PM, Ryan Sleevi wrote:
> Hi Steve,
>
> Thanks for your continued attention to this matter. Your responses open
> many new and important questions and which give serious question as to
> whether the proposed remediations are sufficient. To keep this short, and
> thereb
On 24/02/17 08:25, Andrew Ayer wrote:
> Below is an unrevoked SHA-1 serverAuth certificate for
> getset.trustis.com issued from this CA with a Not Before date of
> 2016-11-07.
Blake: you wrote: "As part of the incident handling procedure, Trustis’
security management committee, commissioned a full
On 24/02/17 07:08, blake.mor...@trustis.com wrote:
> Certificates for the HMRC SET Service are issued from the SHA-1 “FPS
> TT Issuing Authority”, which is now only used for this service. The
> replacement server certificate for hmrcset.trustis.com was issued
> from the FPS TT IA, via a manual pro
On 23/02/17 21:35, wuyi wrote:
> “Acknowledgment and Acceptance: An acknowledgment and acceptance that
> the CA is entitled to revoke the certificate immediately if the
> Applicant were to violate the terms of the Subscriber or Terms of Use
> Agreement or if the CA discovers that the Certificate is
On Fri, 24 Feb 2017 08:25:25 -0800
Andrew Ayer via dev-security-policy
wrote:
> On Fri, 24 Feb 2017 07:08:54 -0800 (PST)
> "blake.morgan--- via dev-security-policy"
> wrote:
>
> > Trustis has some time ago, migrated all TLS certificate production
> > to SHA-256 Issuing Authorities. The small n
On Fri, 24 Feb 2017 07:08:54 -0800 (PST)
"blake.morgan--- via dev-security-policy"
wrote:
> Trustis has some time ago, migrated all TLS certificate production to
> SHA-256 Issuing Authorities. The small number of previously issued
> SHA-1 TLS certificates issued from “FPS TT”, that had lifetimes
On Monday, February 20, 2017 at 11:50:59 AM UTC, Gervase Markham wrote:
> On 16/02/17 18:26, blake.mor...@trustis.com wrote:
> > Trustis has now revoked the SHA-1 Certificate for hmrcset.trustis.com
> > and replaced it with a SHA-256 Certificate. This status is reflected
> > in the latest CRL.
>
8 matches
Mail list logo
