Open Bug 1733229 Opened 3 years ago Updated 1 year ago

Indicate expired certificates in the CA hierarchy view

Categories

(CA Program :: Common CA Database, task)

Product:
CA Program
Component:
Common CA Database
Type:
task

Tracking

(Not tracked)

People

(Reporter: kathleen.a.wilson, Unassigned)

Details

In the CA Hierarchy view the CCADB indicates the revoked certificates via a red "X" in front of the certificate name and "[Revoked]" at the end of the row.

Please also add an indicator for when a certificate is expired. e.g. add a red "X" in front of the certificate name and "[Expired]" at the end of the row.

Note that a certificate can be both revoked and expired, so it is possible that a row will have "[Expired][Revoked]" at the end of it.

It would also be good if the view if the revoked/expired CA certificates could be optionally removed from the display. This will make it easier for CAs and reviewers to focus on updating/reviewing active CA certifiates.

Priority: P2 → P1

I endorse this improvement. In Telia we see it irritating that irrelevant expired CA rows ruin the CA visibility.

I agree as well. These would be very helpful visual improvements. Personally, I rarely need to see expired or revoked CAs and they make it harder to parse for the active CAs that I more commonly need to find.

+1 to this enhancement (on behalf of the Chrome Root Program)

Severity: -- → S3
Product: NSS → CA Program
Severity: S3 → --
Priority: P1 → --
Whiteboard: [ccadb-enhancement]
You need to log in before you can comment on or make changes to this bug.