← China Financial Certification Authority (CFCA) cases
Bugzilla #1229288
Root Update Request
New EV Policy OID for CFCA EV root
RESOLVED
China Financial Certification Authority (CFCA)
AI Summary
The China Financial Certification Authority (CFCA) submitted a request to update their EV Policy OID for their EV root certificate. The request aimed to implement new OIDs in compliance with CA/Browser Forum recommendations. However, Mozilla decided not to enable the Code Signing trust bit for roots in their certificate policy, leading to the resolution of the case without further action. The CFCA acknowledged the decision and clarified their intent to adopt the new OIDs.
Chronology
- Initial request for EV Policy OID update submitted.
- Discussion on the implications of the new OIDs and Mozilla's policy.
- Case closed due to policy changes regarding Code Signing trust bit.
Participants
zhaogaixia
Kathleen Wilson
External References
Similar Local Cases
Enable EV and Turn on Code Signing trust bit for TWCA Root certificate
Turn off websites and code signing trust bits for two IdenTrust root certs
Replace Entrust.net Certification Authority (2048) root certificate
Refresh the GlobalSign Root CA cert (will be EV)
Basic Constraint Ext: Proposal: Remove old Entrust 2048 root, add equivalent 2048 intermediate
GlobalSign: Remove EV bit from ex-GS roots now owned by GTS
DigiCert: Transition Plan for Existing Dual-Purpose Roots
Delete Visa International Root - GP2 and add Visa International Root - InfoDelivery