Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

What standards do certification authorities have to comply with?

Authorities Certification comply Standards
0
Posted

What standards do certification authorities have to comply with?

0 CommentsAdd a Comment

1 Answer

0

Generally, in order to be accepted by a browser supplier, a certification authority (CA) must meet standards set by either the American Institute of Certified Public Accountants/Canadian Institute of Chartered Accountants (AICPA/CICA) or the (European Telecommunications Standards Institute) ETSI. The AICPA/CICA standard is called “WebTrust for CAs” and the ETSI standard is called “ETSI TS 101456 Policy requirements for certification authorities issuing qualified certificates.” These audit schemes impose requirements on the CA’s systems, personnel and procedures. But, they do not currently prescribe the specific methods used by the CA to validate the identifying information that is to be included in the certificate. With the introduction of extended validation certificates (EV SSL Certificates), WebTrust will be augmented to audit the CA’s conformance with the extended validation guidelines.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123