Closed Bug 1653092 Opened 4 years ago Closed 4 years ago

Turn off Websites Trust Bit for OISTE WISeKey Global Root GA CA

Categories

(NSS :: CA Certificates Code, enhancement)

Product:
NSS
Component:
CA Certificates Code
Version:
3.57
Type:
enhancement

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: kathleen.a.wilson, Assigned: kjacobs)

Details

(Whiteboard: September 2020 Batch of Root Changes)

Attachments

(1 file)

Bug 1653092 - Disable server trust bit for OISTE WISeKey Global Root GA CA root cert. r?KathleenWilson,jcj
47 bytes, text/x-phabricator-request
Details | Review

Please turn off the Websites (SSL/TLS) trust it for the following root certificate.

Subject: CN=OISTE WISeKey Global Root GA CA; OU=Copyright (c) 2005, OISTE Foundation Endorsed; O=WISeKey; C=CH
Certificate Serial Number: 413D72C7F46B1F81437DF1D22854DF9A
SHA-1 Fingerprint: 5922A1E15AEA163521F898396A4646B0441B0FA9
SHA-256 Fingerprint: 41C923866AB4CAD6B7AD578081582E020797A6CBDF4FFF78CE8396B38937D7F5
Mozilla Trust Bits: Email; Websites
Not EV

From the CA: In order to simplify our PKI, we want to remove the TLS Server Authentication trust bit for this Root CA:
CN=OISTE WISeKey Global Root GA CA; OU=Copyright (c) 2005, OISTE Foundation Endorsed; O=WISeKey; C=CH
(Please note the “GA” identifier)
This CA would be used from now on only for Personal Certificates, so we’d still want the rest of trust bits.
We don’t have active TLS certificates under this Root, so this change can happen at any point of your convenience.

https://hg.mozilla.org/projects/nss/rev/1cdfb26b322088856c691c08c2ae0190a28f3dab

Assignee: nobody → kjacobs.bugzilla
Status: NEW → RESOLVED
Closed: 4 years ago
Resolution: --- → FIXED
Target Milestone: --- → 3.57
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: