1754567 - Feature Enhancement Request: Extend CA organization and system data collection

Status: UNCONFIRMED

(CA Program :: Common CA Database, task)

Description

[Ryan Dickson]

User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/98.0.4758.80 Safari/537.36

Steps to reproduce:

I want to discuss further with the CCADB Steering Committee, but I hope to improve CA organization and CA "system" data collection.

Notional thoughts:

1. CA organization:

• Better illustrate operator qualifications to cover competency, capacity, commitment to quality, consistency of performance, control of internal processes, etc.
• Collect information and disclosures about corporate parents and relevant affiliates (to include 3rd party service providers) and their specific role in the PKI

2. CA "system":

• add corresponding audit field entries for key-pair generation and destruction (I imagine these could be positioned ahead of the "standard audit" inputs beneath the "Audit Information" heading).
• it'd be helpful to include dedicated fields to identify dates when generation/destruction took place to support report generation (e.g., "Show me all CAs whose signing key was established before X/X/XXXX."
• add fields to more clearly present URLs of relevant subscriber agreements/terms of service (I understand these exist in operator policies, but it would save time if they were readily available in CA records. Additionally, explicitly referencing the URL in CCADB could lead to additional automated processing/monitoring features in the future.)

I suspect that discussion with the Steering Committee will identify additional opportunities for enhancement, which I can add back to this bug for completeness and transparency.

Actual results:

N/A

Expected results:

See requested feature enhancement above.