Open Bug 1817438 Opened 1 year ago Updated 7 months ago

Add Google Chrome to logic for ALV, Derived Trust Bits, and EV SSL Capable

Categories

(CA Program :: Common CA Database, enhancement)

Product:
CA Program
Component:
Common CA Database
Type:
enhancement

Tracking

(Not tracked)

People

(Reporter: cclements, Unassigned)

Details

  1. Add a "Google Chrome Trust Bits" field on root certificate records:

    1. Add a trigger so that the field is set to "Server Authentication" when "Google Chrome Status" is set to Included or Change Requested; otherwise it is set to empty.
    2. Perform data-backfill for the new field once added.

  2. Add the "Google Chrome Trust Bits" field to the logic that determines:

    1. The values that get passed into ALV for root certificates in Add/Update Root Request Cases;
    2. If all of the necessary audits have been provided before running ALV in Add/Update Root Request Cases; and
    3. The "Derived Trust Bits" field on intermediate certificates.

  3. Add the "Google Chrome EV Enabled" field to the logic that determines the "EV SSL Capable" field on intermediate certificates.

  4. Add a "Google Chrome EV Enabled" field to the root certificate sections in the GOOGLE CHROME tab of Root Inclusion Request cases.

Hi Poonam, Which parts of this have been implemented? And which parts still need to be implemented?

Flags: needinfo?(poonam)

(In reply to Kathleen Wilson from comment #1)

Hi Poonam, Which parts of this have been implemented? And which parts still need to be implemented?

  1. Add a "Google Chrome Trust Bits" field on root certificate records:

i. Add a trigger so that the field is set to "Server Authentication" when "Google Chrome Status" is set to Included or Change Requested; otherwise it is set to empty.

** DONE **

ii. Perform data-backfill for the new field once added.

** DONE **

  1. Add the "Google Chrome Trust Bits" field to the logic that determines:

i. The values that get passed into ALV for root certificates in Add/Update Root Request Cases;

** DONE **

ii. If all of the necessary audits have been provided before running ALV in Add/Update Root Request Cases; and

** IS THIS SAME AS THE PREVIOUS STATEMENT? It's NOT CLEAR. **

iii. The "Derived Trust Bits" field on intermediate certificates.

** NOT DONE **

  1. Add the "Google Chrome EV Enabled" field to the logic that determines the "EV SSL Capable" field on intermediate certificates.

** NOT DONE **

  1. Add a "Google Chrome EV Enabled" field to the root certificate sections in the GOOGLE CHROME tab of Root Inclusion Request cases.

** DONE **

Flags: needinfo?(poonam)
You need to log in before you can comment on or make changes to this bug.