diff --git a/CP-CPS.md b/CP-CPS.md index a6c4e33..1a02cab 100644 --- a/CP-CPS.md +++ b/CP-CPS.md @@ -12,6 +12,8 @@ ISRG PKI services are most commonly, but not necessarily exclusively, provided u The ISRG PKI conforms to the current version of the Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates published at . In the event of any inconsistency between this document and those Requirements, those Requirements take precedence over this document. +The ISRG PKI conforms to the latest version of the Apple Root Certificate Program, the CCADB Policy, the Chrome Root Program Policy, the Microsoft Root Program Requirements, and the Mozilla Root Store Policy. + Other documents related to the behavior and control of the ISRG PKI, such as a Subscriber Agreement and Privacy Policy, can be found in the Policy and Legal Repository. Per IETF PKIX RFC 3647, this CP/CPS is divided into nine components that cover security controls, practices, and procedures for certification services provided by the ISRG PKI. @@ -156,9 +158,19 @@ See the Baseline Requirements and NetSec Requirements for additional acronyms. ### 1.6.3 References -"Baseline Requirements": [CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates](https://cabforum.org/baseline-requirements-documents/) +_Apple Root Certificate Program_, Apple, + +_Baseline Requirements for the Issuance and Management of Publicly‐Trusted TLS Server Certificates_ ("Baseline Requirements"), CA/Browser Forum, + +_CCADB Policy_, The Linux Foundation, + +_Chrome Root Program Policy_, Google, + +_Microsoft Root Program Requirements_, Microsoft, + +_Mozilla Root Store Policy_, Mozilla, -"NetSec Requirements": [CA/Browser Forum Network and Certificate System Security Requirements](https://cabforum.org/network-security-requirements/) +_Network and Certificate System Security Requirements_ ("NetSec Requirements"), CA/Browser Forum, ### 1.6.4 Conventions