← GlobalSign nv-sa cases
Bugzilla #1315018
Policy Compliance
SHA-1 issuance by GlobalSign root
RESOLVED
GlobalSign nv-sa
AI Summary
This case addresses the issuance of SHA-1 certificates by GlobalSign, which is in violation of Mozilla's policies. The certificates were issued for specific use cases, including S/MIME and client authentication, but raised concerns regarding compliance with the Baseline Requirements. GlobalSign clarified that these certificates were not intended for SSL issuance, leading to discussions about the interpretation of policy regarding SHA-1 usage.
Chronology
- Initial report of SHA-1 issuance
- GlobalSign provides clarification on issuance
Participants
Gervase Markham
Kathleen Wilson
Douglas Beattie
External References
Similar Local Cases
SwissSign: BRs require full annual audits
Verify GlobalSign's continued conformance to EV guidelines
Distrust ISRG Subordinate Certificate and Remove It Until the CA is Compliant with Mozilla Policies
GoDaddy: Valid 1024 certificates
StartCom: Certificates using secp256k1
Amazon Trust Services - BR Self Assessment and CP/CPS Updates
Amazon Trust Services: Forbidden Domain Validation Method 3.2.2.4.6
ANF AC: Test Certificates Non-Compliance