← Telia Company cases
Bugzilla #1649683
Policy Compliance
Telia: Qualified BR Audit Statement 2020
RESOLVED
FIXED
Telia Company
AI Summary
Telia Company reported an observation from their 2020 Webtrust BR audit, indicating that their old root CA certificates do not fully comply with current BR requirements. The audit noted that the Key Usage extension in the root CA certificates was not marked critical, and the subject information lacked the country name. Although Telia has created a new compliant root CA, the transition to widespread adoption is ongoing, and they are seeking continued trust for their older roots until the new root is accepted by all browsers.
Chronology
- Telia reported an observation from the BR audit.
- Severity field review initiated.
- Discussion on closing the case due to clear compliance plan.
Participants
pekka.lahtiharju@teliasonera.com
ryan.sleevi@gmail.com
kwilson
External References
Similar Local Cases
Firmaprofesional: 2020 Audit Report Finding 1 out of 4
Microsoft PKI Services: Firewall log data retention
Firmaprofesional: 2019 audit Finding #1 - 6.2 Identification and Authorization
Distrust ISRG Subordinate Certificate and Remove It Until the CA is Compliant with Mozilla Policies
DigiCert: Late background refreshment check
SwissSign: BRs require full annual audits
NetLock: Issuance of intermediates after 2019-01-01 that do not comply with Mozilla Policy
Ernst & Young Poland: KIR OCSP "unknown" status for revoked certificate