Re: Changing Date Checks in Audit Reminder Emails

Thanks Wayne and Kurt for your input. So here's the updated proposal: 1) If (1 year + 31 days) < (today - Audit Period End Date) <= (1 year + 93 days) Send Courtesy Audit Reminder https://wiki.mozilla.org/CA/Email_templates#Courtesy_Audit_Reminder_Email_Template 2) If (1 year + 93 days) <

RE: Incident Report: Test revoked certificates created with an incorrect validity period

Thanks Ryan! I’ve linked this bug to our internal tracking and will update with more details. From: Ryan Sleevi Sent: Wednesday, February 6, 2019 12:51 To: Ponds-White, Trevoli Cc: dev-security-policy@lists.mozilla.org Subject: Re: Incident Report: Test revoked certificates created with an

Re: Incident Report: Test revoked certificates created with an incorrect validity period

On Wed, Feb 6, 2019 at 2:41 PM Ponds-White, Trevoli via dev-security-policy wrote: > Hi Wayne, > > This is a report about the certificates used by software vendors for > testing. Specifically the "revoked" ones we make for Amazon Trust Services. > > 1. How your CA first became aware of the

Re: Telia CA - problem in E validation

Telia has supplied the point-in-time audit reports required to verify remediation of the audit issues that were described in this thread and in https://bugzilla.mozilla.org/show_bug.cgi?id=1475115 Links to the PiT reports:

Incident Report: Test revoked certificates created with an incorrect validity period

Hi Wayne, This is a report about the certificates used by software vendors for testing. Specifically the "revoked" ones we make for Amazon Trust Services. 1. How your CA first became aware of the problem (e.g. via a problem report submitted to your Problem Reporting Mechanism, a discussion in