|
|
@ -621,7 +621,7 @@ certificates.
|
|
|
|
|
|
|
|
|
|
|
|
<p>
|
|
|
|
<p>
|
|
|
|
<b>Roots.</b>
|
|
|
|
<b>Roots.</b>
|
|
|
|
The <span class="q"> (new) </span> CAcert root layout is as below.
|
|
|
|
The new CAcert root layout is as below.
|
|
|
|
These roots are pending Audit,
|
|
|
|
These roots are pending Audit,
|
|
|
|
and will be submitted to vendors via the (Top-level) Root.
|
|
|
|
and will be submitted to vendors via the (Top-level) Root.
|
|
|
|
</p>
|
|
|
|
</p>
|
|
|
@ -1010,7 +1010,6 @@ As per above.
|
|
|
|
in any way, including but not limited to delivering these
|
|
|
|
in any way, including but not limited to delivering these
|
|
|
|
certificates with their products, e.g. browsers, mailers or servers.
|
|
|
|
certificates with their products, e.g. browsers, mailers or servers.
|
|
|
|
Vendors are covered under a separate licence.
|
|
|
|
Vendors are covered under a separate licence.
|
|
|
|
<span class="q"> As of the moment, this licence is not written.</span>
|
|
|
|
|
|
|
|
</p>
|
|
|
|
</p>
|
|
|
|
<p>
|
|
|
|
<p>
|
|
|
|
<b><a name="d_ccs" id="d_ccs">Configuration-Control Specification</a></b> "CCS".
|
|
|
|
<b><a name="d_ccs" id="d_ccs">Configuration-Control Specification</a></b> "CCS".
|
|
|
@ -1088,18 +1087,17 @@ The Subscriber Naming consists of:
|
|
|
|
<ul>
|
|
|
|
<ul>
|
|
|
|
<li><tt>subjectAltName=</tt>
|
|
|
|
<li><tt>subjectAltName=</tt>
|
|
|
|
One, or more, of the Subscriber's verified email addresses,
|
|
|
|
One, or more, of the Subscriber's verified email addresses,
|
|
|
|
in rfc822Name format.
|
|
|
|
in rfc822Name format. Also includes a SHA1 hash of a random number if
|
|
|
|
|
|
|
|
the member selects SSO (Single Sign On ID) during submission of CSR.
|
|
|
|
<ul class="q">
|
|
|
|
|
|
|
|
<li>SSO in subjectAltName?.</li>
|
|
|
|
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
<li><tt>EmailAddress=</tt>
|
|
|
|
<li><tt>EmailAddress=</tt>
|
|
|
|
One, or more, of the Subscriber's verified email addresses.
|
|
|
|
One, or more, of the Subscriber's verified email addresses,
|
|
|
|
This is deprecated under
|
|
|
|
in rfc822Name format. Also includes a SHA1 hash of a random number if
|
|
|
|
|
|
|
|
the member selects SSO (Single Sign On ID) during submission of CSR.
|
|
|
|
|
|
|
|
This field is deprecated under
|
|
|
|
RFC5280 <a href="http://tools.ietf.org/html/rfc5280#section-4.2.1.6">4
|
|
|
|
RFC5280 <a href="http://tools.ietf.org/html/rfc5280#section-4.2.1.6">4
|
|
|
|
.1.2.6</a>
|
|
|
|
.1.2.6</a>
|
|
|
|
and is to be phased out. Also includes a SHA1 hash of a random number if
|
|
|
|
and is to be phased out.
|
|
|
|
the member selects SSO (Single Sign On ID) during submission of CSR.
|
|
|
|
|
|
|
|
</li>
|
|
|
|
</li>
|
|
|
|
<li><tt>CN=</tt> The common name takes its value from one of:
|
|
|
|
<li><tt>CN=</tt> The common name takes its value from one of:
|
|
|
|
<ul><li>
|
|
|
|
<ul><li>
|
|
|
|