[ECA-5476] Certificate and CRL sampling on Appliance - PrimeKey Issue Tracker

XML

Word

Printable

Details

Type: New Feature
Status: Closed
Priority: Major
Resolution: Not needed to fix
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Description

With stricter and stricter audit requirements having an automated way to check conformance becomes very interesting.
We have the "org.ejbca.core.model.ca.publisher.CertificateSamplerCustomPublisher" and the https://www.ejbca.org/docs/userguide.html#EJBCA%20Validation/Conformance%20Tool%20(EJBCA%20Enterprise%20only) for validation. There is also tools like certlint to check conformance according to CABForum, RFC5280 etc.

With ~~ECA-4485~~, this would be easy to implement, as first stage at least (i.e. verifying conformance but not being able to automatically stop issuance if non-conformance is detected).

Attachments

Issue Links

is related to

ECA-6051 Add post-processing to Validator framework

Closed

ECA-4485 Publisher to send CRL (and cert) directly with ssh/scp

Closed

relates

ECA-4806 Auditor must be able to request a random sampling of actions to audit

Closed

Activity

People

Assignee:: Unassigned

Reporter:: Tomas Gustavsson

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2016-10-24 16:27

Updated:: 2019-10-23 11:53

Resolved:: 2019-10-23 11:53