Open
Bug 1789901
Opened 2 years ago
Updated 1 year ago
Add Reminder/Task for Updating Policy Documents
Categories
(CA Program :: Common CA Database, task)
Tracking
(Not tracked)
UNCONFIRMED
People
(Reporter: clint, Unassigned)
Details
User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:104.0) Gecko/20100101 Firefox/104.0
Steps to reproduce:
In order to help CAs better ensure compliance with CA/BF and Root Program requirements to update their CP, CPS, and CP/CPS documents annually, we should add a reminder for CAs when their current documentation in CCADB is approaching and past 1 year since the most recent update.
I believe this could be accomplished via the following updates:
- Modify the "Last Update Date" field associated with Policy Documents to instead read "Policy Document Effective Date"
- Implement or update logic to verify that a CA's Trust Bits (as set by the Root Programs they participate in) matches the Trust Bits they've marked as being covered by a Policy Document.
** Provide warnings during upload and potentially persistent on the Root and/or Intermediate CA Record pages indicating a mismatch between the currently valid set of Policy Documents' Trust Bits and those associated with the Root and Intermediate CA Records tied to those Policy Documents - Mark Policy Documents as "Out of Date" (or similar) if their "Policy Document Effective Date" is greater than 379 days older than current date.
- Add a task list item indicating CAs need to update their Policy Documents starting when their most recent Policy Documents are 335 days prior to current date. This should be a warning, until 365 days prior to current date at which point it should be upgraded to an error.
- Reports (columns, filters) should be able to identify CAs with outdated policy documents.
This may require a bit of cleanup by CAs (marking old documents as deleted, updating the Trust Bits associated with a policy document, etc.)
Updated•2 years ago
|
Type: enhancement → task
Priority: -- → P1
Whiteboard: [ccadb-enhancement]
Updated•2 years ago
|
Severity: -- → S2
Assignee | ||
Updated•2 years ago
|
Product: NSS → CA Program
Updated•1 year ago
|
Severity: S2 → --
Priority: P1 → --
Whiteboard: [ccadb-enhancement]
You need to log in
before you can comment on or make changes to this bug.
Description
•