← SwissSign AG cases
Bugzilla #1990276
Policy Compliance
SwissSign: recommendation on evaluation of cloud service providers
RESOLVED
FIXED
SwissSign AG
AI Summary
The audit report for SwissSign recommended improvements to their internal questionnaire used for evaluating cloud service providers. This recommendation aims to ensure that the questionnaire aligns more closely with CA/B Forum requirements. Although the existing questionnaire was deemed sufficient for audit purposes, it lacked explicit mapping to all relevant regulations. SwissSign has since updated the questionnaire to address these gaps and will continue to monitor for community feedback.
Chronology
- Audit report containing recommendation published
- Action item to check questionnaire against CA/B regulations completed
Participants
Sandy Balzer
External References
Similar Local Cases
SwissSign: recommendation on risk assessment
SwissSign: Attribute Change process did not revoke single-domain certificates
SwissSign: BRs require full annual audits
SwissSign: Non-BR-Compliant Certificate Issuance
SwissSign: Missed deadline of publication of 6 CPs and 1 CP/CPS
NETLOCK: Missing Related Incidents section in the bug report
QuoVadis: Unconstrained CAs missing audits
DigiCert: Inconsistent EV audits