Add Google Chrome to logic for ALV, Derived Trust Bits, and EV SSL Capable
Categories
(CA Program :: Common CA Database, enhancement)
Tracking
(Not tracked)
People
(Reporter: cclements, Unassigned)
Details
-
Add a "Google Chrome Trust Bits" field on root certificate records:
- Add a trigger so that the field is set to "Server Authentication" when "Google Chrome Status" is set to Included or Change Requested; otherwise it is set to empty.
- Perform data-backfill for the new field once added.
-
Add the "Google Chrome Trust Bits" field to the logic that determines:
- The values that get passed into ALV for root certificates in Add/Update Root Request Cases;
- If all of the necessary audits have been provided before running ALV in Add/Update Root Request Cases; and
- The "Derived Trust Bits" field on intermediate certificates.
-
Add the "Google Chrome EV Enabled" field to the logic that determines the "EV SSL Capable" field on intermediate certificates.
-
Add a "Google Chrome EV Enabled" field to the root certificate sections in the GOOGLE CHROME tab of Root Inclusion Request cases.
Comment 1•9 months ago
|
||
Hi Poonam, Which parts of this have been implemented? And which parts still need to be implemented?
Comment 2•7 months ago
|
||
(In reply to Kathleen Wilson from comment #1)
Hi Poonam, Which parts of this have been implemented? And which parts still need to be implemented?
- Add a "Google Chrome Trust Bits" field on root certificate records:
i. Add a trigger so that the field is set to "Server Authentication" when "Google Chrome Status" is set to Included or Change Requested; otherwise it is set to empty.
** DONE **
ii. Perform data-backfill for the new field once added.
** DONE **
- Add the "Google Chrome Trust Bits" field to the logic that determines:
i. The values that get passed into ALV for root certificates in Add/Update Root Request Cases;
** DONE **
ii. If all of the necessary audits have been provided before running ALV in Add/Update Root Request Cases; and
** IS THIS SAME AS THE PREVIOUS STATEMENT? It's NOT CLEAR. **
iii. The "Derived Trust Bits" field on intermediate certificates.
** NOT DONE **
- Add the "Google Chrome EV Enabled" field to the logic that determines the "EV SSL Capable" field on intermediate certificates.
** NOT DONE **
- Add a "Google Chrome EV Enabled" field to the root certificate sections in the GOOGLE CHROME tab of Root Inclusion Request cases.
** DONE **
Description
•