Note: My Web pages are best viewed with style sheets enabled.
|
Note: My Web pages are best viewed with style sheets enabled. |
Unrated |
Version 2Jul07-1.0.3
The following requirements in this Checklist do not trace to any WebTrust criteria:
§A: A.2.i, A.2.k, A.2.l
§B: B.2.f, B.2.m, B.2.n, B.2.o
§C: C.4.c, C.5.d, C.5.e, C.5.g, C.5.h, C.7.f, C.8.e
In the sequence of WebTrust §1.1 criteria, those criteria trace to the requirements in this Checklist as follows. Where a WebTrust criterion does not trace to any Checklist requirement, an explanation is given. No attempt has been made to create a trace between this Checklist and WebTrust §2 (Principle 2: Service Integrity) or §3 (Principle 3: CA Environmental Controls) criteria, which are generally redundant with §1.1 criteria. (Note: The WebTrust Program document has no subsections in §1 other than §1.1; §1 has no §1.2 or later subsections.)
| WebTrust Criterion | Checklist Requirement |
|---|---|
| 1 | A.2.b |
| 2 | A.2.b, A.2.c |
| 3 | A.1.a, A.2.a, B.2.g |
| 4 | A.6.a, A.6.b |
| 5 | A.6.b, A.6.c, A.6.d |
| 6 | A.3.a, A.3.b, A.3.c, A.3.d, A.3.k, A.4.a, A.4.b, A.4.c, A.4.d, A.4.e, A.4.f, A.5.h |
| 7 | A.3.f, A.3.g, A.3.h, A.3.i, B.2.l |
| 8 | A.3.l, A.5.f, A.5.g, B.1.a, B.1.b, B.2.a, B.2.b, B.2.c, B.2.d, B.2.e, B.2.h |
| 9 | B.2.p, C.1.a, C.1.b, C.1.c |
| 10 | A.2.c, A.2.e |
| 11 | B.2.h, B.2.i, B.2.j, C.6.f |
| 12 | A.2.v, A.2.w, A.2.x |
| 13 | B.2.k, C.6.g |
| 14 | A.3.e |
| 15 | A.6.a |
| 16 | None. This criterion — limiting either the minimum or maximum value of a transaction — represents a capability not generally implemented in Web browsers. |
| 17 | A.2.d |
| 18 | A.5.a, A.5.f, A.5.i, C.2.b, C.2.c, C.2.d, C.3.c, C.3.d, C.3.e, C.3.f, C.3.g, C.3.h, C.3.i, C.3.l, C.4.b, C.4.d, C.4.e, C.4.h |
| 19 | C.5.a, C.5.b |
| 20 | A.2.t, C.3.a, C.3.b, C.4.a |
| 21 | C.3.j, C.3.k, C.4.f, C.4.g |
| 22 | A.2.c, A.2.d, C.5.c, C.6.b |
| 23 | A.3.j, C.5.b, C.5.f |
| 24 | A.2.q |
| 25 | A.2.f, A.2.g, A.2.h, A.2.j, A.2.m, A.2.n, A.2.u, A.2.w, A.2.x, C.6.a, C.6.b, C.6.c, C.6.d, C.6.e, C.9.a |
| 26 | A.2.u, A.2.v, A.2.w, A.2.x, C.9.a, C.9.b, C.9.c |
| 27 | A.2.s, C.7.a, C.7.b, C.7.c, C.7.d, C.7.e |
| 28 | None. Rekeying is generally covered by the issuing or renewing of user certificates. |
| 29 | C.7.b, C.7.d, C.7.e |
| 30 | A.2.d |
| 31 | None. This is somewhat redundant with WebTrust criterion 32. |
| 32 | B.2.h, B.2.k |
| 33 | A.2.o, A.2.p, A.2.q, A.2.t, B.2.j, B.2.k, C.8.a, C.8.b, C.8.c, C.8.d, C.8.f |
| 34 | None. The checklist uses a preference for outright revocation in place of suspension. |
| 35 | A.2.y, A.3.j, B.2.j, B.2.k, C.8.f |
| 36 | A.2.d, B.2.k |
| 37 | None. This is redundant with WebTrust criterion 35 |
| 38 | None. This is a hardware issue. The checklist only addresses software certificates. |
| 39 | A.1.a, A.1.b, A.1.c, A.1.d, A.1.e, A.1.f, A.1.g, A.1.h, A.1.i, A.1.j, A.1.k, A.2.u, A.2.y, A.3.a, A.3.l, B.2.a, B.2.b |
| 40 | A.2.y |
| 41 | A.4.a, A.4.b, A.4.c, A.4.d, A.4.e, A.4.f |
| 42 | A.3.k |
| 43 | A.5.a, A.5.b, A.5.c, A.5.d, A.5.e, A.5.f, A.5.g, A.5.i, C.1.d, C.2.a, C.2.b, C.2.c, C.2.d |
| 44 | A.3.1 |
| 45 | A.1.k |
Last updated 2 July 2007
 David Ross home |
 |
 CA Review home |
