Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-6063

Make Trust Anchor for CAA Validators configurable

    Details

    • Type: New Feature
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: EJBCA 6.9.1
    • Component/s: None
    • Labels:

      Description

      CAA should always check DNSSec, but there is an off chance that somebody has signed their records with another trust anchor, or that the trust anchor changes (unlikely, but could happen). Make the trust anchor configurable, keeping the current one as the pre-defined default.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                hsunmark Henrik Sunmark
                Reporter:
                samuel Samuel Lidén Borell
                Verified by:
                Mike Agrenius Kushner, Samuel Lidén Borell
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 1 day Original Estimate - 1 day
                  1d
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day, 30 minutes
                  1d 30m