Closed Bug 1873057 Opened 2 years ago Closed 2 months ago

Add Microsec "e-Szigno TLS Root CA 2023"

Categories

(CA Program :: CA Certificate Root Program, task, P2)

Product:
CA Program
Component:
CA Certificate Root Program
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: szoke.sandor, Assigned: bwilson)

References

Details

(Whiteboard: [ca-approved] included in FF 149, NSS 3.121)

Attachments

(8 files)

20230626--EHSZ_Root_Key_Generation_Audit_Report_signed.pdf
253.93 KB, application/pdf
Details
Mozilla--Quantifying_value--2024-01.pdf
548.88 KB, application/pdf
Details
CCADB_Self_Assessment-Microsec_2023-12--20231207.xlsx
131.50 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
Microsec_2024-09-09_CCADB_Self_Assessment_Framework_v1.4.1-20241204_final.xlsx
173.79 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
Mozilla--Quantifying_value--2025-11.pdf
577.03 KB, application/pdf
Details
Microsec_2025-12-01_multipurpose_roots-CCADB_Self_Assessment_Framework_v1.7.xlsx
205.84 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
Microsec_2025-12-01__dedicated_TLS_roots-CCADB_Self_Assessment_Framework_v1.7.xlsx
205.26 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details
20230626--EHSZ_Root_Key_Generation_Audit_Report_EN_signed.pdf
239.46 KB, application/pdf
Details

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/120.0.0.0 Safari/537.36

Steps to reproduce:

I uploded the root key generation report as requested by Ben Wilson.

Assignee: nobody → bwilson
Status: UNCONFIRMED → ASSIGNED
Type: enhancement → task
Ever confirmed: true
Whiteboard: [ca-initial]
Priority: -- → P2
Summary: Microsec "e-Szigno TLS Root CA 2023" Root Inclusion Request → Add Microsec "e-Szigno TLS Root CA 2023"
Whiteboard: [ca-initial] → [ca-verifying]

We created a new "Root Inclusion Request" case in CCADB:

https://ccadb.my.site.com/s/case/5008Z00002KHhoeQAD/microsec-root-inclusion-request-202401-for-eszigno-tls-root-ca-2023-and-eszigno-root-ca-2017

Presently we prepare the requested information for the inclusion request.

This inclusion request entered a six-week public discussion period on November 7, 2025, which is scheduled to end on December 19, 2025. https://groups.google.com/a/ccadb.org/g/public/c/95h0Cjq8A0k/m/bV2Xq4hZBAAJ

Whiteboard: [ca-verifying] → [ca-in-discussion]
Whiteboard: [ca-in-discussion] → [ca-in-discussion] [ccadb-case-00001692]

The six-week public discussion period ended in December - https://groups.google.com/a/ccadb.org/g/public/c/95h0Cjq8A0k/m/_ngtZGYWAgAJ. I will now post an announcement on m-d-s-p with a notice of intent to approve the request and begin a 7-day “last call” period ending on January 12, 2026.

Whiteboard: [ca-in-discussion] [ccadb-case-00001692] → [ca-pending-approval] [ccadb-case-00001692]

Notice of final call was posted on m-d-s-p. See https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/UdDqO6K4YpU/m/FJONU5lqAwAJ

The 7-day period of "last call" ended this past Monday, January 12, 2026, and Microsec's request to include the e-Szigno TLS Root CA 2023 is deemed approved. I'll create a request in NSS:CA Certificates Code to include it with the websites trust bit enabled.

Whiteboard: [ca-pending-approval] [ccadb-case-00001692] → [ca-approved] [ccadb-case-00001692]
Whiteboard: [ca-approved] [ccadb-case-00001692] → [ca-approved] [ccadb-case-00001692] - pending NSS inclusion
Depends on: 2010389

Confirmed in Nightly - NSS 3.121 and FF 149.

Status: ASSIGNED → RESOLVED
Closed: 2 months ago
Resolution: --- → FIXED
Whiteboard: [ca-approved] [ccadb-case-00001692] - pending NSS inclusion → [ca-approved] included in FF 149, NSS 3.121

English version of the root key generation report

You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: