1789901 - Add Reminder/Task for Updating Policy Documents

Status: UNCONFIRMED

(CA Program :: Common CA Database, task)

Description

[Clint]

User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:104.0) Gecko/20100101 Firefox/104.0

Steps to reproduce:

In order to help CAs better ensure compliance with CA/BF and Root Program requirements to update their CP, CPS, and CP/CPS documents annually, we should add a reminder for CAs when their current documentation in CCADB is approaching and past 1 year since the most recent update.

I believe this could be accomplished via the following updates:

• Modify the "Last Update Date" field associated with Policy Documents to instead read "Policy Document Effective Date"
• Implement or update logic to verify that a CA's Trust Bits (as set by the Root Programs they participate in) matches the Trust Bits they've marked as being covered by a Policy Document.
  ** Provide warnings during upload and potentially persistent on the Root and/or Intermediate CA Record pages indicating a mismatch between the currently valid set of Policy Documents' Trust Bits and those associated with the Root and Intermediate CA Records tied to those Policy Documents
• Mark Policy Documents as "Out of Date" (or similar) if their "Policy Document Effective Date" is greater than 379 days older than current date.
• Add a task list item indicating CAs need to update their Policy Documents starting when their most recent Policy Documents are 335 days prior to current date. This should be a warning, until 365 days prior to current date at which point it should be upgraded to an error.
• Reports (columns, filters) should be able to identify CAs with outdated policy documents.

This may require a bit of cleanup by CAs (marking old documents as deleted, updating the Trust Bits associated with a policy document, etc.)