Certificate | ('NIST', '') | ('NIST', 'condition') | ('BSI', '') | ('BSI', 'condition') | ('ANSSI', '') | ('ANSSI', 'condition') | ('MOZILLA', '') |
---|---|---|---|---|---|---|---|
X.509 version | must | VALUE Certificate 2 == X.509 version and NOTE_FALSE In order for the certificate to be compliant it has to use X.509 version 2 | <Not mentioned> | must | <Not mentioned> | ||
Issuer Distinguished Name | recommended | CHECK_DN Issuer Distinguished Name - der | must not | NOTE_TRUE BSI guidelines prohibit the usage of * in this field. Issue detected: {reason} within certificate #{cert} and VALUE Certificate * in [Issuer Distinguished Name][CN] | <Not mentioned> | <Not mentioned> | |
validity | recommended | YEARS <= 3 and NOTE_FALSE In order for the certificate to be compliant it should have a validity of 3 years or less | must | YEARS <= 3 and NOTE_FALSE In order for the certificate to be compliant it must have a validity of 3 years or less | <Not mentioned> | <Not mentioned> | |
Subject Distinguished Name | recommended | CHECK_DN Subject Distinguished Name - der | must not | NOTE_TRUE BSI guidelines prohibit the usage of * in this field. Issue detected: {reason} within certificate #{cert} and VALUE Certificate * in [Subject Distinguished Name][CN] | <Not mentioned> | <Not mentioned> |