User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:18.104.22.168) Gecko/2009030422 Ubuntu/8.10 (intrepid) Firefox/3.0.7 Build Identifier: ALL The Portuguese Government created their own certification authority a while ago (http://www.ecce.gov.pt/, in portuguese only). Some governmental services, such as, just for example, https://queixaselectronicas.mai.gov.pt/, intended for victims to present complaints about crimes they suffered, use certificates issued by that authority. When someone visits this type of governmental websites, the usual security error similar to the one presented when a website uses a self-signed certificate appears, leaving regular unaware citizens scared. Would it possible to include the "root" certificates in Firefox by default to avoid this situation? http://www.ecce.gov.pt/certificados/ECRaizEstado.crt http://www.ecce.gov.pt/certificados/ECCE.crt After manually installing both certificates, the certificate chain seems to work properly. Reproducible: Always Steps to Reproduce: 1. Open a portuguese government website with certificates from the government certificate authority, for example: https://queixaselectronicas.mai.gov.pt/ Actual Results: 2. Security Warning ("Get me out of Here")
The government would need to follow the rules outlined at http://www.mozilla.org/projects/security/certs/policy/. Are you a representative of the Portuguese department that created the CA?
No, unfortunately I am not. But I will point them to this bug asap.
Please also point them to https://wiki.mozilla.org/CA:How_to_apply An official representative of this CA will need to provide the information listed in https://wiki.mozilla.org/CA:Information_checklist
Update: a new contact with government representatives was attempted today.
Closing this bug as invalid. Please have an official representative of this CA create a new bug as per https://wiki.mozilla.org/CA:How_to_apply