During gap analysis and impact assessment of the changes to the BR in the context of SC31 - Browser Alignment, we noted that our legacy platform, using EJBCA as issuance backend, did not fully support the changes related to not including the "Unspecified" reason code in OCSP responses for the certificates that are revoked with that reason. Refer to BR 1.7.1 section 7.3 and 7.2.2, this specific requirement is effective as of September 30 2020.
We raised the issue with PrimeKey and EJBCA version 7.4.2 was released on September 14 2020. This message is intended to inform other CA using EJBCA software and subject to BR of the above.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy