• Register
Welcome to IT Security Q&A, where you can ask questions and receive answers from other members of the community.

Are certificate authorities audited? If so who does the audit?

0 votes
111 views
What kind of audit is performed. Why do we need to trust CA's? Who is responsible for maintaining the integrity of ssl?
asked Nov 3, 2012 in SSL Certificates by Jason Moran (820 points)
edited Nov 13, 2012 by administrator
    

1 Answer

0 votes

Yes, Certificate Authorities (CAs) go through a Webtrust audit annually. Any of the Webtrust certified auditors, including the Big 4, are able to perform the audit. Once the audit is completed, a CA can apply to become trusted in all of the browsers. This is why CAs must adhere to minimum basic requirements outlined by the cabforum and it's also the reason why CAs are trusted globally.

answered Nov 13, 2012 by administrator (1,870 points)

Related questions

0 votes
1 answer 116 views
116 views asked Aug 14, 2012 in SSL Certificates by anonymous
0 votes
1 answer 86 views
...