|Welcome Guest! Login|
Stronger controls by Mozilla for issuing SSL Certificates
Mozilla has released new stricter rules for SSL Certificates. Mozilla hopes to regain confidence with its new version of the policy. In recent years there have been several hacks which were bad for the industry. The Certificate Authorities (CAs) have to comply with the new rules on May 15, 2013.
Incorrectly issued SSL Certificates provide major problems for the industry. The problems, for instance with Comodo, DigiNotar and Türktrust, did the industry no good. Mozilla is therefore taking measures to prevent this in the future.
The new rules are intended primarily for the subordinate CAs. These are CAs that are authorized by the Root CA to issue SSL Certificates. Thus, in the latest version (2.1) of Mozilla's CA Certificate Policy are new rules included that require subordinate CAs to comply with the CA/Browser Forum. The baseline rules for the SSL Certificates are listed in this CA/B Forum.
All SSL Certificates that are issued by the subordinate Certificate Authorities after May 15, 2013 must comply with the new version of Mozilla's CA Certificate Policy. All certificates that are already issued should have been updated on May 15, 2014.