Closed Bug 1937332 Opened 11 months ago Closed 10 months ago

Turn off Secure Email Trust Bit for BJCA Global Root CA1 and BJCA Global Root CA2

Categories

(NSS :: CA Certificates Code, task)

Product:
NSS
Component:
CA Certificates Code
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: bwilson, Assigned: djackson)

References

Details

(Whiteboard: Removed email trust bit in NSS 3.108 and FF 136)

Attachments

(1 file)

Bug 1937332 - Turn off Secure Email Trust Bit for BJCA Global Root CA1 and BJCA Global Root CA2. r=#nss-reviewers
48 bytes, text/x-phabricator-request
Details | Review

BJCA would like to disable the “Secure Email” Trust Bit for the following root CAs:

BJCA Global Root CA1
CN=BJCA Global Root CA1; O=BEIJING CERTIFICATE AUTHORITY; C=CN
Certificate Serial Number: 556F65E3B4D9906A1B09D16C3EC06C20
SHA-1 Fingerprint: D5EC8D7B4CBA79F4E7E8CB9D6BAE77831003216A
SHA-256 Fingerprint: F3896F88FE7C0A882766A7FA6AD2749FB57A7F3E98FB769C1FA7B09C2C44D5AE

BJCA Global Root CA2
CN=BJCA Global Root CA2; O=BEIJING CERTIFICATE AUTHORITY; C=CN
Certificate Serial Number: 2C17087D642AC0FE85185906CFB44AEB
SHA-1 Fingerprint: F42786EB6EB86D88316702FBBA66A45300AA7AA6
SHA-256 Fingerprint: 574DF6931E278039667B720AFDC1600FC27EB66DD3092979FB73856487212882

Whiteboard: [ca-removal]
Flags: needinfo?(bwilson)
Component: CA Certificate Root Program → CA Certificates Code
Flags: needinfo?(bwilson)
Product: CA Program → NSS
Depends on: 1938250

For both of these,
CKA_TRUST_EMAIL_PROTECTION CK_TRUST CKT_NSS_TRUSTED_DELEGATOR ->
CKA_TRUST_EMAIL_PROTECTION CK_TRUST CKT_NSS_MUST_VERIFY_TRUST

Assignee: bwilson → djackson

https://hg.mozilla.org/projects/nss/rev/3b107ec519cccaa17e578d11e682059b91bc23c2

Status: ASSIGNED → RESOLVED
Closed: 10 months ago
Resolution: --- → FIXED
Whiteboard: Removed email trust bit in NSS 3.108 and FF 136
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: