Open Bug 1665588 Opened 2 years ago Updated 1 year ago

Add Vintegris SLU root certificate(s)

Categories

(NSS :: CA Certificate Root Program, task, P4)

Tracking

(Not tracked)

ASSIGNED

People

(Reporter: victoria.hernandez, Assigned: bwilson)

Details

(Whiteboard: [ca-verifying] BW 2021-09-02 Comment #12)

Attachments

(3 files)

Attached file Vintegris TSP.zip

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/85.0.4183.102 Safari/537.36

Steps to reproduce:

I´m Victoria, from the Vintegris company, current QTSP called vinCAsign, we have certified ourselves for the issuance of SSL certificates and we would like to integrate into Mozilla.

Attached I provide the corresponding ETSI certificate, and the following documentation:

  • Certification Practice Statement CPS
  • PDS
  • Certificates
  • Hierarchy

Please, I hope you accept our inclusion request.

Best regards,

Assignee: kwilson → bwilson
Status: UNCONFIRMED → ASSIGNED
Type: enhancement → task
Ever confirmed: true
Whiteboard: [ca-initial]

A CCADB case has been opened for this inclusion request: https://ccadb-public.secure.force.com/mozilla/PrintViewForCase?CaseNumber=00000668

The Applicant needs to complete a Baseline Requirements Self-Assessment -
see https://wiki.mozilla.org/CA/BR_Self-Assessment
which links the BR self-assessment spreadsheet template -
https://docs.google.com/spreadsheets/d/1ni41Czial_mggcax8GuCBlInCt1mNOsqbEPzftuAuNQ/edit?usp=sharing

Additionally, in the CCADB, Applicant needs to complete the section titled "Mozilla Additional Requirements" - "CA's Response to Required Practices" and "CA's Response to Forbidden Practices".

Please let us know when those steps have been completed.

Flags: needinfo?(victoria.hernandez)

Hello Victoria,
Have you had the chance to update any information?
Thanks,
Ben

Whiteboard: [ca-initial] → [ca-verifying]

Hello everyone,

I'm writing in a ANF AC capacity. I want to report that I found links to ANF AC Certificate Policy and Certificate Practice Statement (outdated versions) in "Policy Document Record #2" and "Policy Document Record #3" of the CCADB case for this root inclusion.

This has to be an error. To avoid any confusion, I just want to state that ANF AC does not approve this, and that our policies (CP nor CPS) have nothing to do with CA Vintegris.

Hello Pablo.

It is a mistake, Vintegris hasn`t provided this documentation.

We understand that you have made a mistake in publishing it, I apologize for not having noticed it earlier.

Ben Wilson, please would it be possible to remove the documentation attached to the Register of political document no. 2 and to the Register of political document no. 3?

It is documentation from another PSC, it doesn`t belong to Vintegris.

Regards,

Flags: needinfo?(victoria.hernandez)

I went into the CCADB and deleted them from the Vintegris case. Please let me know if you encounter any other errors.

Priority: -- → P4

There are a number of tasks that Vintegris needs to complete to move this application forward, including but not limited to:

Updated annual audit for the new SubCA.

Flags: needinfo?(bwilson)
Attachment #9233912 - Flags: review+
Attachment #9233912 - Flags: feedback+

Hello Ben,

following the case of acceptance of the new CASUB vinCAsign NebulaSuite5 Authority we have reviewed the details of it, adapting them to the most recent audit.

Plase, If is posible, we request that you review the audit document to continue with the audit letter validation,

Kind Regards,

Flags: needinfo?(bwilson)

Hi Ben,

Forgive me for insisting. I´m working on the integration of our certificates and after providing you with all the required documentation, I would like to know from your side if it is necessary for me to provide you with additional information.

Please, I look forward to your comments.

Kind Regards,

Flags: needinfo?(bwilson)

Here are some things that Vintegris needs to work on:

Flags: needinfo?(bwilson)
Whiteboard: [ca-verifying] → [ca-verifying] BW 2021-09-02 Comment #12
You need to log in before you can comment on or make changes to this bug.