May 2020 CA Communication

ITEM 3: Reducing Maximum Validity Period for TLS Certificates Mozilla plans to discuss and release an update to the Root Store Policy soon, and will appreciate your input when we discuss the potential changes in the mozilla.dev.security.policy forum. There are two potential changes that we are seeking your input on before we start the discussion. Please reply to the Sub Items below if your CA has root certificates that are enabled with the Websites trust bit.
ITEM 3 COMMENTS

CA Owner Response Response
AC Camerfirma, S.A. Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Actalis Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Amazon Trust Services Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Asseco Data Systems S.A. (previously Unizeto Certum) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Atos Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Autoridad de Certificacion Firmaprofesional Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Buypass Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
China Financial Certification Authority (CFCA) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Chunghwa Telecom Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Consorci Administració Oberta de Catalunya (Consorci AOC, CATCert) Other (please describe below) Although our CA still has the website bit enabled, we do not issue TLS Certificates since 1st-January-2020.The last one was issued in 27th-December-2019. Related bugs/information: https://bugzilla.mozilla.org/show_bug.cgi?id=1496616#c22 https://bugzilla.mozilla.org/show_bug.cgi?id=1621159
Cybertrust Japan / JCSI Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
D-TRUST Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Deutsche Telekom Security GmbH Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Dhimyotis / Certigna Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
DigiCert Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Disig, a.s. Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
E-Tugra Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Entrust Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Global Digital Cybersecurity Authority Co., Ltd. (Formerly Guang Dong Certificate Authority (GDCA)) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
GlobalSign nv-sa Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
GoDaddy Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Google Trust Services LLC Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Government of Hong Kong (SAR), Hongkong Post, Certizen Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Government of Spain, Autoritat de Certificació de la Comunitat Valenciana (ACCV) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Government of Spain, Fábrica Nacional de Moneda y Timbre (FNMT) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Government of Taiwan, Government Root Certification Authority (GRCA) Other (please describe below) GRCA and its sub CAs do not issue any TLS certificates since 18-Seepteember 2019, and we will revoke all TLS certificates on 7/19/2020.
Government of The Netherlands, PKIoverheid (Logius) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Government of Turkey, Kamu Sertifikasyon Merkezi (Kamu SM) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
HARICA Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
IdenTrust Services, LLC Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Internet Security Research Group Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Izenpe S.A. Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Krajowa Izba Rozliczeniowa S.A. (KIR) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Microsec Ltd. Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
NETLOCK Kft. Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
OISTE Our CA issues TLS certificates, so we are providing our input on the Sub Items below. We consider that the way that this change is being imposed undermines the existence of the CAB Forum, and even if we are in agreement of reducing the lifetime of certificates, we definitely think that it should have been result of consensus and a ballot where the date to enforce the change isn't unilaterally imposed by one or more Root Programs.
QuoVadis Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
SECOM Trust Systems CO., LTD. Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
SK ID Solutions AS Other (please describe below) Please note that SK has terminated issuance of TLS Server Certificates as of September 1st 2017 and therefore we are unable to meet this requirement. The last TLS certificate will expire in September 2020.
SSL.com Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Sectigo Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
SecureTrust Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Shanghai Electronic Certification Authority Co., Ltd. Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
SwissSign AG Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Taiwan-CA Inc. (TWCA) Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Telia Company Our CA issues TLS certificates, so we are providing our input on the Sub Items below. In Telia were are not supporting these changes. In Nordic countries we haven't had ever issues because of two year validity. We can manage with the changes but we think that it is an unnecessary burden to our customers and we should give more time to them to build their SSL automation, perhaps two more years.
TrustCor Systems Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
Trustis Other (please describe below) End-entity certificate issuance under the current service has been discontinued
Web.com Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
certSIGN Our CA issues TLS certificates, so we are providing our input on the Sub Items below.
eMudhra Technologies Limited Our CA issues TLS certificates, so we are providing our input on the Sub Items below.