← Netlock cases
Bugzilla #2032939
Policy Compliance
NETLOCK: Transition Plan for Mozilla Root Store Policy 7.5 by Deadline
RESOLVED
FIXED
Netlock
AI Summary
NETLOCK is addressing compliance with Mozilla Root Store Policy Section 7.5, which mandates the separation of TLS and S/MIME trust bits. The NETLOCK Arany (Gold) Class Root CA certificate currently includes both trust bits but is set to expire before the compliance deadline of December 31, 2028. This situation raises questions about whether active remediation is necessary or if the natural expiration of the certificate suffices for compliance. The issue was identified internally following Mozilla's communication regarding the transition plan.
Chronology
- Preliminary incident report submitted.
- Request to close the ticket as the issue will be handled under another ticket.
- Ticket set to be closed.
Participants
Roland Kaluha
B. Wilson
External References
Related Bugzilla IDs Mentioned
Similar Local Cases
NETLOCK: Expired Test Website Certificate
NETLOCK: CA/Browser Forum TLS BR Non-compliance
NETLOCK: did not file a preliminary incident report or respond to a third-party report within the 72-hour timeframe
NETLOCK: Missing Related Incidents section in the bug report
NETLOCK: CPS 1.5.2. problem and contact information update
NetLock: Issuance of intermediates after 2019-01-01 that do not comply with Mozilla Policy
Sectigo: Missing Changelog in CPS
QuoVadis: Unconstrained CAs missing audits