Open Bug 1938884 Opened 7 months ago Updated 4 months ago

Add NAVER Cloud Trust Services Root Certificates

Categories

(CA Program :: CA Certificate Root Program, task, P2)

Product:
CA Program
Component:
CA Certificate Root Program
Type:
task

Tracking

(Not tracked)

Status:
ASSIGNED

People

(Reporter: hogeun.yoo, Assigned: bwilson)

Details

(Whiteboard: [ca-verifying])

Attachments

(5 files)

NAVER_Cloud_Trust_Services_CPCPS_v1.0.5.pdf
744.74 KB, application/pdf
Details
NAVER Cloud Trust Services - WTCA_INDEPENDENT ASSURANCE REPORT_2024_Signed.pdf
312.67 KB, application/pdf
Details
NAVER Cloud Trust Services - SSL_INDEPENDENT ASSURANCE REPORT_2024_Signed.pdf
306.91 KB, application/pdf
Details
NAVER_Cloud_Trust_Services_Key Generation Audit Report.pdf
262.36 KB, application/pdf
Details
NAVER_Cloud_Trust_Services_CCADB-Self-Assessment-Framework-(v1.4.2)_241128.xlsx
204.77 KB, application/vnd.openxmlformats-officedocument.spreadsheetml.sheet
Details

NAVER Cloud Trust Services

NAVER Cloud Trust Services kindly requests consideration for inclusion in Mozilla's CA Certificate Program.

Root Certificate Information

Certificate 1: NAVER Cloud Trust Services RSA Root G1

  • SHA-256 Fingerprint:
    49A2762987788D4834B32305D767760F244D507742E8C2539FD4CA3AD52C16EE
  • Public Key Algorithm:
    RSA 4096 bits
  • Validity Period:
    From: 6/7/2023
    To: 6/6/2043
  • CP/CPS Link:
    NAVER Cloud Trust Services CPS v1.0.4
  • Mozilla Trust Bits:
    Websites

Certificate 2: NAVER Cloud Trust Services ECC Root G1

  • SHA-256 Fingerprint:
    A7C8681042F3675AA8505D3BA313D80F8AC3250FDF874AD29B834689C087FB11
  • Public Key Algorithm:
    EC secp384r1
  • Validity Period:
    From: 6/7/2023
    To: 6/6/2043
  • CP/CPS Link:
    NAVER Cloud Trust Services CPS v1.0.4
  • Mozilla Trust Bits:
    Websites

I am attaching the Root Request CASE link that has been submitted to CCADB.

CAs may access this page via:
https://ccadb.my.site.com/500TO00000JoEb7YAF

Root Store Operators may access this page via:
https://ccadb.my.salesforce.com/500TO00000JoEb7YAF

Mozilla Root Inclusion Case Information:
https://ccadb.my.salesforce-sites.com/mozilla/PrintViewForCase?CaseNumber=00002128

Assignee: nobody → bwilson
Status: UNCONFIRMED → ASSIGNED
Ever confirmed: true
Whiteboard: [ca-initial]
Priority: -- → P2

Naver needs a status update.

Flags: needinfo?(bwilson)

I'll continue the review of the documents submitted (i.e. the Key Generation Report and Annual Self-Assessment).
NAVER Cloud still needs to update the CCADB inclusion case fields with the URLs of test websites demonstrating automated issuance of DV and OV certificates.

Flags: needinfo?(bwilson)

(In reply to Ben Wilson from comment #2)

Naver needs a status update.

Thank you for following up. Please find the current status update below.

Update since December 23, 2024

CP/CPS Update (v1.0.4 → v1.0.5) – March 5, 2025

Changes:

  • Replaced "Not Application" with "No Stipulation"
  • Revised Section 7.1.2 (Certificate Extensions) to provide a more detailed specification in accordance with RFC 5280

Attached Documents:

  • CP/CPS
  • Key Generation Audit Report
  • Standard Audit
  • NetSec Audit
  • TLS BR Audit
  • Self-Assessment

Please let us know if you have any questions or require further clarification.

(In reply to Ben Wilson from comment #3)

I'll continue the review of the documents submitted (i.e. the Key Generation Report and Annual Self-Assessment).
NAVER Cloud still needs to update the CCADB inclusion case fields with the URLs of test websites demonstrating automated issuance of DV and OV certificates.

We are in the process of preparing the required functionality and are making efforts to implement it promptly. Once the test website URLs are updated in the CCADB, we will provide a notification accordingly.

Flags: needinfo?(bwilson)
Flags: needinfo?(bwilson)
Whiteboard: [ca-initial] → [ca-verifying]
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: