November 2017 CA Communication

ACTION 6: Check your CA's "Recognized CAA Domains" and "Problem Reporting Mechanism" fields in the CCADB, or in this spreadsheet, which is available at https://wiki.mozilla.org/CA/Included_CAs. Note that in the spreadsheet the email addresses have been slightly obfuscated by substituting '@' with "[at]" and '.' with "[dot]". Mozilla requires that at least one of the mechanisms defined for Problem Reporting be an email address. Make sure that the CCADB has the correct email address for Problem Reporting, and test that this email address works and is connected to people or systems such that a timely response to a security incident can be expected 24/7.
ACTION 6 COMMENTS Provide corrections to your CA's "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB here. If you have not defined at least one CAA domain, please explain why.

CA Owner Response Response
AC Camerfirma, S.A. Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Actalis Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Amazon Trust Services Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Asseco Data Systems S.A. (previously Unizeto Certum) Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Recognized CAA Domains: certum.pl, certum.eu, yandex.ru (the new one) Problem Reporting Mechanism: Standardized contact form - https://www.certum.eu/certum/cert,contact_contact.xml, email: info(at)certum.pl
Atos Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Recognized CAA Domains: atos.net Problem Reporting Mechanism: gmde-trustcenter[at]atos[dot]net or contact form at https://pki.atos.net
Autoridad de Certificacion Firmaprofesional Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. "Recognized CAA Domains" is ok "Problem Reporting Mechanism" should be submitted to: cumplimiento@firmaprofesional.com
Buypass Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Please add the following email address as a mechanism for Problem Reporting (in addition to the online web service): ca-security@buypass.no.
Certicámara Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Certinomis / Docapost Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
China Financial Certification Authority (CFCA) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Chunghwa Telecom Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Recognized CAA Domains are changed to:pki.hinet.net, eca.hinet.net, publicca.hinet.net, ev.hinet.net, evssl.hinet.net and epki.com.tw.
ComSign Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. We are in the process of perfecting our CAA system. As far as I know we do not have a devoted mailbox for problem reporting in the root program, the mail for that should be mine – yaire@comda.co.il
Consorci Administració Oberta de Catalunya (Consorci AOC, CATCert) Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. "Recognized CAA Domains" is ok "Problem Reporting Mechanism" should be submitted to: incident_pki@aoc.cat
Cybertrust Japan / JCSI Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address. We CTJ has not defined the CAA domain, because CTJ still have no intermediate CA and have not yet begun issuing publicly-trusted SSL/TLS certificate under this JCSI root.
D-TRUST Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Recognized CAA Domains dtrust.de; d-trust.de; dtrust.net; d-trust.net; D-Trust GmbH; D-Trust Problem Reporting Mechanism Security issue notification: https://www.bundesdruckerei.de/en/Service-Support/Support/Security-issue-notification or ssl-issue@bdr.de
Deutscher Sparkassen Verlag GmbH (S-TRUST, DSV-Gruppe) Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Pls change the "Problem Reporting Mechansim " from (empty) to https://www.s-trust.de/kontakt, anfrage@s-trust.de
Dhimyotis / Certigna Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Recognized CAA Domains : http://www.certigna.fr/ Problem Reporting Mechanism : Could you update the text to add an email address : contact[at]dhimyotis[dot]com. Terms and conditions describe this process at section 21. http://cgu.certigna.fr/en/CGU_CERTIGNA_SERVICES_CA.pdf http://cgu.certigna.fr/en/CGU_CERTIGNA_WILD_CA.pdf The report can be done through our website contact form at https://www.certigna.fr/contact.xhtml which proposes the following subject: “Certificate considered malicious or dangerous”.
DigiCert Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Disig, a.s. Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Could you add an e-mail address peter.miskovic@disig.sk as a additional address for Problem Reporting
DocuSign (OpenTrust/Keynectis) Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Problem reporting mechanism should be mailto:rcprogram@docusign.com
E-Tugra Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
EDICOM Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Our Recognized CAA Domains is edicomgroup.com We do not appear at the list, and I think It's becouse of the following BUG; https://bugzilla.mozilla.org/show_bug.cgi?id=1400013 But, since we are in process to include renewed Root, I think we should appear: Current process: https://bugzilla.mozilla.org/show_bug.cgi?id=1239329
Entrust Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address. No comments.
Global Digital Cybersecurity Authority Co., Ltd. (Formerly Guang Dong Certificate Authority (GDCA)) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address. We have already submitted our “Recognized CAA Domains” to the CCADB, and have successfully tested Problem Reporting e-mail address.
GlobalSign Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
GoDaddy Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Google Trust Services LLC (GTS) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Government of Hong Kong (SAR), Hongkong Post, Certizen Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address. Our Recognized CAA Domain is 'hongkongpost.gov.hk'. Problem reporting mechanism is through email to techsupp@hongkongpost.gov.hk.
Government of Spain, Autoritat de Certificació de la Comunitat Valenciana (ACCV) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Government of Spain, Fábrica Nacional de Moneda y Timbre (FNMT) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Government of Taiwan, Government Root Certification Authority (GRCA) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Government of The Netherlands, PKIoverheid (Logius) Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. CAA - The CAA domain with the value of "www.pkioverheid.nl" still remains and means that any TSP (subCA) capable of issuing TLS certificates under our roots may issue when encountering this CAA domain - "www.kpn.com" only for the subCA KPN - ""www.quovadisglobal.com" only for the subCA QuoVadis - "www.digidentity.com" only for subCA Digidentity Problem Reporting Mechanism - For general issues or issues with multiple subCAs, contact pkioverheid@logius.nl - For subCAs KPN and ESG, contact pkivalidation@kpn.com - For subCA QuoVadis contact support@quovadisglobal.com (Phone +31(0)302324320 during office hours or +16512293456 outside office hours.) - For subCA Digidentity, contact info@digidentity.eu, or call +31(0)887 78 78 78
Government of Turkey, Kamu Sertifikasyon Merkezi (Kamu SM) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
HARICA Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
IdenTrust Services, LLC Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Internet Security Research Group (ISRG) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Izenpe S.A. Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Although information is publicly accessible at www.izenpe.com, we're going to update our SSL Certificate Policy to be clearer that the contact email for Problem Reporting is info@izenpe.com
Krajowa Izba Rozliczeniowa S.A. (KIR) Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Recognized CAA Domains: elektronicznypodpis.pl. Problem Reporting Mechanism: Standardized contact form - via http://www.elektronicznypodpis.pl/en/contact-us/contact-form/
LuxTrust Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address. The following email address problem.reporting@luxtrust.lu is made available for 24h/7days support.
Microsec Ltd. Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
NetLock Ltd. Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
OISTE Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
QuoVadis Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
SECOM Trust Systems CO., LTD. Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
SK ID Solutions AS Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
SSL.com Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Recognized CAA domains: "ssl.com" Problem reporting mechanism(s): "Problems may be reported through support[at]ssl[dot]com. Other methods of contacting us are described on our company website. Certificate Resolution Requests may be filed at https://www.ssl.com/revoke/ ."
Sectigo Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
SecureTrust Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
SwissSign AG Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address. all with the same scheme: RR swisssign.org. 86400 IN CAA 0 issue "swisssign.com" -- swisssign.com swisssign.net swissign.com swisssign.ch swisssign.li swissign.li swisssign.org swisssign.biz swisstsa.ch swisstsa.li digitalid.ch digital-id.ch zert.ch rootsigning.com root-signing.ch ssl-certificate.ch managed-pki.ch managed-pki.de swissstick.com swisssigner.ch pki-posta.ch pki-poste.ch pki-post.ch trustdoc.ch trustsign.ch swisssigner.com postsuisseid.ch suisseid-service.ch signdemo.com sirb.com
Swisscom (Switzerland) Ltd Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. Swisscom does not issue certificates for websites. Thus the requirements for CCA Domains do not apply. However, the e-Mail address for Problem Reporting is provided in the CCADB.
T-Systems International GmbH (Deutsche Telekom) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Taiwan-CA Inc. (TWCA) Corrections to our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB are below. twca.com.tw
Telia Company (formerly TeliaSonera) Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
TrustCor Systems Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Trustis Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
TurkTrust Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Visa Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.
Web.com Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address. Definition of timely response
certSIGN Our "Recognized CAA Domains" and "Problem Reporting Mechanism" data in the CCADB is correct, and we have successfully tested our Problem Reporting email address.