Dear OpenJDK Security Team, I hope you are doing well.
I would like to ask for guidance regarding the process of integrating new root certificates into the Java trust store. We understand from recent changes (such as the addition of WISeKey roots under JDK-8372351) that new root certificates are incorporated into OpenJDK following the completion of the Oracle Java Root Certificate Program process. Our organization, SECOM Trust Systems CO., LTD., is a publicly trusted Certificate Authority whose root certificates are included in major global trust programs such as Microsoft, Apple, Google Chrome, Mozilla, and Adobe. In February 2026, we submitted an application to include additional root certificates in the Oracle Java Root Certificate Program via the official contact channel. However, we have not yet received any acknowledgment of receipt. We fully understand that the evaluation process may take time. However, as we have not received any response since our initial submission, we are concerned that our communication may not have been successfully delivered or reviewed. In this context, we would greatly appreciate any guidance you may be able to provide regarding the following points: - Whether there is a recommended way to confirm the status of a submitted application to the Oracle program - Whether there are any additional steps or prerequisites required before a request proceeds toward OpenJDK integration - Whether there is any publicly visible indicator (such as a JBS issue or a PR) that reflects progress in such requests Even high-level guidance would be very helpful for our understanding of the overall process. Thank you very much for your time and consideration. Best regards, ONO Fumiaki / 大野 文彰 (Japanese name order: family name first, in uppercase) SECOM Trust Systems CO., LTD.
