extKeyUsage criticality in the Root CA Certificate Profile Extension Table (Clean-Up Ballot Candidate) #498
Assignees
Labels
baseline-requirements
Server Certificate CWG - Baseline Requirements
clean-up
Items for future clean-up ballot
Comments
dzacharo
added
the
baseline-requirements
|
Notes from the 2024-12-05 SCWG Teleconference:
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The following should be considered a minor item that can be addressed during a future clean-up ballot.
The Root CA Certificate Profile's "Extension" Table (Section 7.1.2.1.2)(https://cabforum.org/working-groups/server/baseline-requirements/requirements/#71212-root-ca-extensions) lists "N" in the criticality column corresponding with the extKeyUsage extension, but instead should list "-" because the extension is prohibited (i.e., "MUST NOT").
The text was updated successfully, but these errors were encountered: