Please find below the description of the technical and organizational controls
1) The currently process of certificates issuance is composed by 4 steps:
step 1: Registration process:
This step consists of the verification of the following items:
•the subscriber identify
Given that some of these are BR requirements, why were these controls not in
==> Some of these controls are already in place (such as the field CN and
Subject Alternative Name that does not contain a private IP address).
In addition to that NDCA has implemented a
Given the misissued certificates in CT under the existing root, I believe this
request should be rejected, and a new clean root with audits should be required
before moving forward.
==>All the misissued certificates have been revoked by the NDCA and new correct
The TunRootCA2 root CA operates under the following CPS:
==> The TunRootCA2 operates under a new version of the CP/CPS: :
Mail list logo