Similarity
Sections that have a similarity of 100% have automatically been remove in a previous run when not displayed in the table below.
| Section | Title | Type | Similarity (%) | Differences |
|---|---|---|---|---|
| 1 | INTRODUCTION | CS | 100.0 | |
| 1 | INTRODUCTION | EVG | 1.34 | |
| 1 | INTRODUCTION | SMIME | 100.0 | |
| 1.1 | Overview | CS | 2.02 | |
| 1.1 | Overview | EVG | 3.2 | |
| 1.1 | Overview | SMIME | 11.06 | |
| 1.2 | Document name and identification | CS | 23.0 | |
| 1.2 | Document name and identification | EVG | 8.95 | |
| 1.2 | Document name and identification | SMIME | 28.7 | |
| 1.2.1 | Revisions | CS | 4.43 | |
| 1.2.1 | Revisions | EVG | 3.49 | |
| 1.2.1 | Revisions | SMIME | 0.76 | |
| 1.2.2 | Relevant Dates | CS | 2.99 | |
| 1.3 | PKI participants | CS | 19.49 | |
| 1.3 | PKI participants | EVG | 19.49 | |
| 1.3 | PKI participants | SMIME | 67.06 | |
| 1.3.1 | Certification authorities | CS | 26.73 | |
| 1.3.1 | Certification authorities | EVG | 26.73 | |
| 1.3.1 | Certification authorities | SMIME | 94.79 | |
| 1.3.2 | Registration authorities | CS | 2.59 | |
| 1.3.2 | Registration authorities | EVG | 6.16 | |
| 1.3.2 | Registration authorities | SMIME | 58.58 | |
| 1.3.3 | Subscribers | CS | 42.25 | |
| 1.3.3 | Subscribers | EVG | 42.25 | |
| 1.3.3 | Subscribers | SMIME | 100.0 | |
| 1.3.4 | Relying parties | CS | 15.32 | |
| 1.3.4 | Relying parties | EVG | 15.32 | |
| 1.3.4 | Relying parties | SMIME | 82.1 | |
| 1.3.5 | Other participants | CS | 13.88 | |
| 1.3.5 | Other participants | EVG | 13.88 | |
| 1.3.5 | Other participants | SMIME | 85.54 | |
| 1.4 | Certificate usage | CS | 100.0 | |
| 1.4 | Certificate usage | EVG | 100.0 | |
| 1.4 | Certificate usage | SMIME | 9.32 | |
| 1.4.1 | Appropriate certificate uses | CS | 86.89 | |
| 1.4.1 | Appropriate certificate uses | EVG | 40.47 | |
| 1.4.1 | Appropriate certificate uses | SMIME | 24.59 | |
| 1.4.2 | Prohibited certificate uses | CS | 100.0 | |
| 1.4.2 | Prohibited certificate uses | EVG | 9.72 | |
| 1.4.2 | Prohibited certificate uses | SMIME | 100.0 | |
| 1.5 | Policy administration | CS | 98.16 | |
| 1.5 | Policy administration | EVG | 6.69 | |
| 1.5 | Policy administration | SMIME | 6.84 | |
| 1.5.1 | Organization administering the document | CS | 100.0 | |
| 1.5.1 | Organization administering the document | EVG | 100.0 | |
| 1.5.1 | Organization administering the document | SMIME | 100.0 | |
| 1.5.2 | Contact person | CS | 100.0 | |
| 1.5.2 | Contact person | EVG | 12.41 | |
| 1.5.2 | Contact person | SMIME | 66.26 | |
| 1.5.3 | Person determining CPS suitability for the policy | CS | 100.0 | |
| 1.5.3 | Person determining CPS suitability for the policy | EVG | 100.0 | |
| 1.5.3 | Person determining CPS suitability for the policy | SMIME | 100.0 | |
| 1.5.4 | CPS approval procedures | CS | 100.0 | |
| 1.5.4 | CPS approval procedures | EVG | 100.0 | |
| 1.5.4 | CPS approval procedures | SMIME | 100.0 | |
| 1.6 | Definitions and acronyms | CS | 100.0 | |
| 1.6 | Definitions and acronyms | EVG | 25.35 | |
| 1.6 | Definitions and acronyms | SMIME | 89.64 | |
| 1.6.1 | Definitions | CS | 16.39 | |
| 1.6.1 | Definitions | EVG | 1.51 | |
| 1.6.1 | Definitions | SMIME | 38.12 | |
| 1.6.2 | Abbreviations and Acronyms | CS | 32.67 | Title doesn not match BRs Acronyms |
| 1.6.2 | Acronyms | EVG | 3.2 | |
| 1.6.2 | Acronyms | SMIME | 17.56 | |
| 1.6.3 | References | CS | 68.0 | |
| 1.6.3 | References | EVG | 3.66 | |
| 1.6.3 | References | SMIME | 27.67 | |
| 1.6.4 | Conventions | CS | 78.59 | |
| 1.6.4 | Conventions | EVG | 74.52 | |
| 1.6.4 | Conventions | SMIME | 40.39 | |
| 2 | PUBLICATION AND REPOSITORY RESPONSIBILITIES | CS | 100.0 | |
| 2 | PUBLICATION AND REPOSITORY RESPONSIBILITIES | EVG | 17.97 | |
| 2 | PUBLICATION AND REPOSITORY RESPONSIBILITIES | SMIME | 30.2 | |
| 2.1 | Repositories | CS | 62.63 | |
| 2.1 | Repositories | EVG | 17.65 | |
| 2.1 | Repositories | SMIME | 99.04 | |
| 2.2 | Publication of certification information | CS | 14.16 | Title doesn not match BRs Publication of information |
| 2.2 | Publication of certification information | EVG | 33.24 | Title doesn not match BRs Publication of information |
| 2.2 | Publication of certification information | SMIME | 28.53 | Title doesn not match BRs Publication of information |
| 2.3 | Time or frequency of publication | CS | 100.0 | |
| 2.3 | Time or frequency of publication | EVG | 15.42 | |
| 2.3 | Time or frequency of publication | SMIME | 61.81 | |
| 2.4 | Access controls on repositories | CS | 100.0 | |
| 2.4 | Access controls on repositories | EVG | 47.89 | |
| 2.4 | Access controls on repositories | SMIME | 100.0 | |
| 3 | IDENTIFICATION AND AUTHENTICATION | CS | 100.0 | |
| 3 | IDENTIFICATION AND AUTHENTICATION | EVG | 100.0 | |
| 3 | IDENTIFICATION AND AUTHENTICATION | SMIME | 100.0 | |
| 3.1 | Naming | CS | 100.0 | |
| 3.1 | Naming | EVG | 100.0 | |
| 3.1 | Naming | SMIME | 100.0 | |
| 3.1.1 | Types of names | CS | 100.0 | |
| 3.1.1 | Types of names | EVG | 100.0 | |
| 3.1.1 | Types of names | SMIME | 5.26 | |
| 3.1.2 | Need for names to be meaningful | CS | 100.0 | |
| 3.1.2 | Need for names to be meaningful | EVG | 100.0 | |
| 3.1.2 | Need for names to be meaningful | SMIME | 32.56 | |
| 3.1.3 | Anonymity or pseudonymity of subscribers | CS | 100.0 | |
| 3.1.3 | Anonymity or pseudonymity of subscribers | EVG | 100.0 | |
| 3.1.3 | Anonymity or pseudonymity of subscribers | SMIME | 5.19 | |
| 3.1.4 | Rules for interpreting various name forms | CS | 100.0 | |
| 3.1.4 | Rules for interpreting various name forms | EVG | 100.0 | |
| 3.1.4 | Rules for interpreting various name forms | SMIME | 100.0 | |
| 3.1.5 | Uniqueness of names | CS | 100.0 | |
| 3.1.5 | Uniqueness of names | EVG | 100.0 | |
| 3.1.5 | Uniqueness of names | SMIME | 100.0 | |
| 3.1.6 | Recognition, authentication, and role of trademarks | CS | 100.0 | |
| 3.1.6 | Recognition, authentication, and role of trademarks | EVG | 100.0 | |
| 3.1.6 | Recognition, authentication, and role of trademarks | SMIME | 100.0 | |
| 3.2 | Initial identity validation | CS | 100.0 | |
| 3.2 | Initial identity validation | EVG | 100.0 | |
| 3.2 | Initial identity validation | SMIME | 6.75 | |
| 3.2.1 | Method to prove possession of private key | CS | 100.0 | |
| 3.2.1 | Method to prove possession of private key | EVG | 100.0 | |
| 3.2.1 | Method to prove possession of private key | SMIME | 100.0 | |
| 3.2.2 | Authentication of organization identity | CS | 32.14 | Title doesn not match BRs Authentication of Organization and Domain Identity |
| 3.2.2 | Authentication of organization identity | EVG | 8.61 | Title doesn not match BRs Authentication of Organization and Domain Identity |
| 3.2.2 | Validation of mailbox authorization or control | SMIME | 3.07 | Title doesn not match BRs Authentication of Organization and Domain Identity; Title does not match RFC 3647 Authentication of organization identity |
| 3.2.2.1 | Authentication of organization identity for Non-EV Code Signing Certificates | CS | 5.0 | Title doesn not match BRs Identity |
| 3.2.2.1 | Overview | EVG | 9.56 | Title doesn not match BRs Identity |
| 3.2.2.1 | Validating authority over mailbox via domain | SMIME | 1.85 | Title doesn not match BRs Identity |
| 3.2.2.2 | Authentication of organization identity for EV Code Signing Certificates | CS | 4.69 | Title doesn not match BRs DBA/Tradename |
| 3.2.2.2 | Verification of Applicant's Legal Existence and Identity | EVG | 15.99 | Title doesn not match BRs DBA/Tradename |
| 3.2.2.2 | Validating control over mailbox via email | SMIME | 4.53 | Title doesn not match BRs DBA/Tradename |
| 3.2.2.3 | Verification of Applicant's Legal Existence and Identity – Assumed Name | EVG | 15.01 | Title doesn not match BRs Verification of Country |
| 3.2.2.3 | Validating applicant as operator of associated mail server(s) | SMIME | 6.05 | Title doesn not match BRs Verification of Country |
| 3.2.2.4 | Verification of Applicant's Physical Existence | EVG | 6.7 | Title doesn not match BRs Validation of Domain Authorization or Control |
| 3.2.2.4 | CAA records | SMIME | 1.22 | Title doesn not match BRs Validation of Domain Authorization or Control |
| 3.2.2.4.1 | Address of Applicant's Place of Business | EVG | 0.77 | Title doesn not match BRs Validating the Applicant as a Domain Contact |
| 3.2.2.5 | Verified Method of Communication | EVG | 5.07 | Title doesn not match BRs Authentication for an IP Address |
| 3.2.2.5.1 | Verification Requirements | EVG | 2.63 | Title doesn not match BRs Agreed-Upon Change to Website |
| 3.2.2.5.2 | Acceptable Methods of Verification | EVG | 2.53 | Title doesn not match BRs Email, Fax, SMS, or Postal Mail to IP Address Contact |
| 3.2.2.6 | Verification of Applicant's Operational Existence | EVG | 7.16 | Title doesn not match BRs Wildcard Domain Validation |
| 3.2.2.7 | Verification of Applicant's Domain Name | EVG | 8.33 | Title doesn not match BRs Data Source Accuracy |
| 3.2.2.8 | Verification of Name, Title, and Authority of Contract Signer and Certificate Approver | EVG | 4.94 | Title doesn not match BRs CAA Records |
| 3.2.3 | Authentication of individual identity | CS | 22.01 | |
| 3.2.3 | Authentication of individual identity | EVG | 8.22 | |
| 3.2.3 | Authentication of organization identity | SMIME | 18.92 | Title doesn not match BRs Authentication of individual identity; Title does not match RFC 3647 Authentication of individual identity |
| 3.2.4 | Non-verified subscriber information | CS | 100.0 | |
| 3.2.4 | Non-verified subscriber information | EVG | 100.0 | |
| 3.2.4 | Authentication of individual identity | SMIME | 1.96 | Title doesn not match BRs Non-verified subscriber information; Title does not match RFC 3647 Non-verified subscriber information |
| 3.2.5 | Validation of authority | CS | 99.92 | |
| 3.2.5 | Validation of authority | EVG | 4.4 | |
| 3.2.5 | Non-verified subscriber information | SMIME | 15.58 | Title doesn not match BRs Validation of authority; Title does not match RFC 3647 Validation of authority |
| 3.2.6 | Criteria for interoperation | CS | 10.96 | Title doesn not match BRs Criteria for Interoperation or Certification |
| 3.2.6 | Criteria for interoperation | EVG | 18.62 | Title doesn not match BRs Criteria for Interoperation or Certification |
| 3.2.6 | Validation of authority | SMIME | 2.25 | Title doesn not match BRs Criteria for Interoperation or Certification; Title does not match RFC 3647 Criteria for interoperation |
| 3.3 | Identification and authentication for re-key requests | CS | 100.0 | |
| 3.3 | Identification and authentication for re-key requests | EVG | 100.0 | |
| 3.3 | Identification and authentication for re-key requests | SMIME | 100.0 | |
| 3.3.1 | Identification and authentication for routine re-key | CS | 100.0 | |
| 3.3.1 | Identification and authentication for routine re-key | EVG | 100.0 | |
| 3.3.1 | Identification and authentication for routine re-key | SMIME | 100.0 | |
| 3.3.2 | Identification and authentication for re-key after revocation | CS | 100.0 | |
| 3.3.2 | Identification and authentication for re-key after revocation | EVG | 100.0 | |
| 3.3.2 | Identification and authentication for re-key after revocation | SMIME | 100.0 | |
| 3.4 | Identification and authentication for revocation request | CS | 100.0 | |
| 3.4 | Identification and authentication for revocation request | EVG | 100.0 | |
| 3.4 | Identification and authentication for revocation request | SMIME | 100.0 | |
| 4 | CERTIFICATE LIFE-CYCLE OPERATIONAL REQUIREMENTS | CS | 100.0 | |
| 4 | CERTIFICATE LIFE-CYCLE OPERATIONAL REQUIREMENTS | EVG | 100.0 | |
| 4 | CERTIFICATE LIFE-CYCLE OPERATIONAL REQUIREMENTS | SMIME | 100.0 | |
| 4.1 | Certificate Application | CS | 100.0 | |
| 4.1 | Certificate Application | EVG | 100.0 | |
| 4.1 | Certificate application | SMIME | 100.0 | |
| 4.1.1 | Who can submit a certificate application | CS | 25.14 | |
| 4.1.1 | Who can submit a certificate application | EVG | 33.46 | |
| 4.1.1 | Who can submit a certificate application | SMIME | 100.0 | |
| 4.1.2 | Enrollment process and responsibilities | CS | 41.29 | |
| 4.1.2 | Enrollment process and responsibilities | EVG | 11.02 | |
| 4.1.2 | Enrollment process and responsibilities | SMIME | 37.71 | |
| 4.2 | Certificate application processing | CS | 100.0 | |
| 4.2 | Certificate application processing | EVG | 100.0 | |
| 4.2 | Certificate application processing | SMIME | 100.0 | |
| 4.2.1 | Performing identification and authentication functions | CS | 25.57 | |
| 4.2.1 | Performing identification and authentication functions | EVG | 4.76 | |
| 4.2.1 | Performing identification and authentication functions | SMIME | 7.75 | |
| 4.2.2 | Approval or rejection of certificate applications | CS | 5.96 | |
| 4.2.2 | Approval or rejection of certificate applications | EVG | 30.9 | |
| 4.2.2 | Approval or rejection of certificate applications | SMIME | 30.9 | |
| 4.2.3 | Time to process certificate applications | CS | 100.0 | |
| 4.2.3 | Time to process certificate applications | EVG | 100.0 | |
| 4.2.3 | Time to process certificate applications | SMIME | 100.0 | |
| 4.3 | Certificate issuance | CS | 100.0 | |
| 4.3 | Certificate issuance | EVG | 100.0 | |
| 4.3 | Certificate issuance | SMIME | 100.0 | |
| 4.3.1 | CA actions during certificate issuance | CS | 59.36 | |
| 4.3.1 | CA actions during certificate issuance | EVG | 90.24 | |
| 4.3.1 | CA actions during certificate issuance | SMIME | 95.61 | |
| 4.3.2 | Notification to subscriber by the CA of issuance of certificate | CS | 100.0 | |
| 4.3.2 | Notification to subscriber by the CA of issuance of certificate | EVG | 100.0 | |
| 4.3.2 | Notification to subscriber by the CA of issuance of certificate | SMIME | 100.0 | |
| 4.4 | Certificate acceptance | CS | 100.0 | |
| 4.4 | Certificate acceptance | EVG | 100.0 | |
| 4.4 | Certificate acceptance | SMIME | 100.0 | |
| 4.4.1 | Conduct constituting certificate acceptance | CS | 100.0 | |
| 4.4.1 | Conduct constituting certificate acceptance | EVG | 100.0 | |
| 4.4.1 | Conduct constituting certificate acceptance | SMIME | 100.0 | |
| 4.4.2 | Publication of the certificate by the CA | CS | 100.0 | |
| 4.4.2 | Publication of the certificate by the CA | EVG | 100.0 | |
| 4.4.2 | Publication of the certificate by the CA | SMIME | 100.0 | |
| 4.4.3 | Notification of certificate issuance by the CA to other entities | CS | 100.0 | |
| 4.4.3 | Notification of certificate issuance by the CA to other entities | EVG | 100.0 | |
| 4.4.3 | Notification of certificate issuance by the CA to other entities | SMIME | 100.0 | |
| 4.5 | Key pair and certificate usage | CS | 100.0 | |
| 4.5 | Key pair and certificate usage | EVG | 100.0 | |
| 4.5 | Key pair and certificate usage | SMIME | 100.0 | |
| 4.5.1 | Subscriber private key and certificate usage | CS | 100.0 | |
| 4.5.1 | Subscriber private key and certificate usage | EVG | 55.49 | |
| 4.5.1 | Subscriber private key and certificate usage | SMIME | 100.0 | |
| 4.5.2 | Relying party public key and certificate usage | CS | 100.0 | |
| 4.5.2 | Relying party public key and certificate usage | EVG | 100.0 | |
| 4.5.2 | Relying party public key and certificate usage | SMIME | 100.0 | |
| 4.6 | Certificate renewal | CS | 100.0 | |
| 4.6 | Certificate renewal | EVG | 100.0 | |
| 4.6 | Certificate renewal | SMIME | 100.0 | |
| 4.6.1 | Circumstance for certificate renewal | CS | 100.0 | |
| 4.6.1 | Circumstance for certificate renewal | EVG | 100.0 | |
| 4.6.1 | Circumstance for certificate renewal | SMIME | 100.0 | |
| 4.6.2 | Who may request renewal | CS | 100.0 | |
| 4.6.2 | Who may request renewal | EVG | 100.0 | |
| 4.6.2 | Who may request renewal | SMIME | 100.0 | |
| 4.6.3 | Processing certificate renewal requests | CS | 100.0 | |
| 4.6.3 | Processing certificate renewal requests | EVG | 100.0 | |
| 4.6.3 | Processing certificate renewal requests | SMIME | 100.0 | |
| 4.6.4 | Notification of new certificate issuance to subscriber | CS | 100.0 | |
| 4.6.4 | Notification of new certificate issuance to subscriber | EVG | 100.0 | |
| 4.6.4 | Notification of new certificate issuance to subscriber | SMIME | 100.0 | |
| 4.6.5 | Conduct constituting acceptance of a renewal certificate | CS | 100.0 | |
| 4.6.5 | Conduct constituting acceptance of a renewal certificate | EVG | 100.0 | |
| 4.6.5 | Conduct constituting acceptance of a renewal certificate | SMIME | 100.0 | |
| 4.6.6 | Publication of the renewal certificate by the CA | CS | 100.0 | |
| 4.6.6 | Publication of the renewal certificate by the CA | EVG | 100.0 | |
| 4.6.6 | Publication of the renewal certificate by the CA | SMIME | 100.0 | |
| 4.6.7 | Notification of certificate issuance by the CA to other entities | CS | 100.0 | |
| 4.6.7 | Notification of certificate issuance by the CA to other entities | EVG | 100.0 | |
| 4.6.7 | Notification of certificate issuance by the CA to other entities | SMIME | 100.0 | |
| 4.7 | Certificate re-key | CS | 100.0 | |
| 4.7 | Certificate re-key | EVG | 100.0 | |
| 4.7 | Certificate re-key | SMIME | 100.0 | |
| 4.7.1 | Circumstance for certificate re-key | CS | 100.0 | |
| 4.7.1 | Circumstance for certificate re-key | EVG | 100.0 | |
| 4.7.1 | Circumstance for certificate re-key | SMIME | 100.0 | |
| 4.7.2 | Who may request certification of a new public key | CS | 100.0 | |
| 4.7.2 | Who may request certification of a new public key | EVG | 100.0 | |
| 4.7.2 | Who may request certification of a new public key | SMIME | 100.0 | |
| 4.7.3 | Processing certificate re-keying requests | CS | 100.0 | |
| 4.7.3 | Processing certificate re-keying requests | EVG | 100.0 | |
| 4.7.3 | Processing certificate re-keying requests | SMIME | 100.0 | |
| 4.7.4 | Notification of new certificate issuance to subscriber | CS | 100.0 | |
| 4.7.4 | Notification of new certificate issuance to subscriber | EVG | 100.0 | |
| 4.7.4 | Notification of new certificate issuance to subscriber | SMIME | 100.0 | |
| 4.7.5 | Conduct constituting acceptance of a re-keyed certificate | CS | 100.0 | |
| 4.7.5 | Conduct constituting acceptance of a re-keyed certificate | EVG | 100.0 | |
| 4.7.5 | Conduct constituting acceptance of a re-keyed certificate | SMIME | 100.0 | |
| 4.7.6 | Publication of the re-keyed certificate by the CA | CS | 100.0 | |
| 4.7.6 | Publication of the re-keyed certificate by the CA | EVG | 100.0 | |
| 4.7.6 | Publication of the re-keyed certificate by the CA | SMIME | 100.0 | |
| 4.7.7 | Notification of certificate issuance by the CA to other entities | CS | 100.0 | |
| 4.7.7 | Notification of certificate issuance by the CA to other entities | EVG | 100.0 | |
| 4.7.7 | Notification of certificate issuance by the CA to other entities | SMIME | 100.0 | |
| 4.8 | Certificate modification | CS | 100.0 | |
| 4.8 | Certificate modification | EVG | 100.0 | |
| 4.8 | Certificate modification | SMIME | 100.0 | |
| 4.8.1 | Circumstance for certificate modification | CS | 100.0 | |
| 4.8.1 | Circumstance for certificate modification | EVG | 100.0 | |
| 4.8.1 | Circumstance for certificate modification | SMIME | 100.0 | |
| 4.8.2 | Who may request certificate modification | CS | 100.0 | |
| 4.8.2 | Who may request certificate modification | EVG | 100.0 | |
| 4.8.2 | Who may request certificate modification | SMIME | 100.0 | |
| 4.8.3 | Processing certificate modification requests | CS | 100.0 | |
| 4.8.3 | Processing certificate modification requests | EVG | 100.0 | |
| 4.8.3 | Processing certificate modification requests | SMIME | 100.0 | |
| 4.8.4 | Notification of new certificate issuance to subscriber | CS | 100.0 | |
| 4.8.4 | Notification of new certificate issuance to subscriber | EVG | 100.0 | |
| 4.8.4 | Notification of new certificate issuance to subscriber | SMIME | 100.0 | |
| 4.8.5 | Conduct constituting acceptance of modified certificate | CS | 100.0 | |
| 4.8.5 | Conduct constituting acceptance of modified certificate | EVG | 100.0 | |
| 4.8.5 | Conduct constituting acceptance of modified certificate | SMIME | 100.0 | |
| 4.8.6 | Publication of the modified certificate by the CA | CS | 100.0 | |
| 4.8.6 | Publication of the modified certificate by the CA | EVG | 100.0 | |
| 4.8.6 | Publication of the modified certificate by the CA | SMIME | 100.0 | |
| 4.8.7 | Notification of certificate issuance by the CA to other entities | CS | 100.0 | |
| 4.8.7 | Notification of certificate issuance by the CA to other entities | EVG | 100.0 | |
| 4.8.7 | Notification of certificate issuance by the CA to other entities | SMIME | 100.0 | |
| 4.9 | Certificate revocation and suspension | CS | 16.0 | |
| 4.9 | Certificate revocation and suspension | EVG | 100.0 | |
| 4.9 | Certificate revocation and suspension | SMIME | 100.0 | |
| 4.9.1 | Circumstances for revocation | CS | 19.1 | |
| 4.9.1 | Circumstances for revocation | EVG | 100.0 | |
| 4.9.1 | Circumstances for revocation | SMIME | 100.0 | |
| 4.9.1.1 | Reasons for Revoking a Subscriber Certificate | CS | 13.62 | |
| 4.9.1.1 | Reasons for revoking a subscriber certificate | SMIME | 22.22 | |
| 4.9.1.2 | Reasons for Revoking a Subordinate CA Certificate | CS | 99.94 | |
| 4.9.1.2 | Reasons for revoking a subordinate CA certificate | SMIME | 95.62 | |
| 4.9.2 | Who can request revocation | CS | 13.72 | |
| 4.9.2 | Who can request revocation | EVG | 18.58 | |
| 4.9.2 | Who can request revocation | SMIME | 95.21 | |
| 4.9.3 | Procedure for revocation request | CS | 100.0 | |
| 4.9.3 | Procedure for revocation request | EVG | 8.85 | |
| 4.9.3 | Procedure for revocation request | SMIME | 85.07 | |
| 4.9.4 | Revocation request grace period | CS | 100.0 | |
| 4.9.4 | Revocation request grace period | EVG | 100.0 | |
| 4.9.4 | Revocation request grace period | SMIME | 100.0 | |
| 4.9.5 | Time within which CA must process the revocation request | CS | 7.02 | |
| 4.9.5 | Time within which CA must process the revocation request | EVG | 7.84 | |
| 4.9.5 | Time within which CA must process the revocation request | SMIME | 90.75 | |
| 4.9.6 | Revocation checking requirement for relying parties | CS | 10.5 | |
| 4.9.6 | Revocation checking requirement for relying parties | EVG | 30.39 | |
| 4.9.6 | Revocation checking requirement for relying parties | SMIME | 100.0 | |
| 4.9.7 | CRL issuance frequency | CS | 7.29 | |
| 4.9.7 | CRL issuance frequency (if applicable) | EVG | 5.82 | Title doesn not match BRs CRL issuance frequency |
| 4.9.7 | CRL issuance frequency | SMIME | 6.08 | |
| 4.9.8 | Maximum latency for CRLs | CS | 80.0 | Title doesn not match BRs Maximum latency for CRLs (if applicable) |
| 4.9.8 | Maximum latency for CRLs (if applicable) | EVG | 100.0 | |
| 4.9.8 | Maximum latency for CRLs | SMIME | 80.0 | Title doesn not match BRs Maximum latency for CRLs (if applicable) |
| 4.9.9 | On-line revocation/status checking availability | CS | 85.86 | |
| 4.9.9 | On-line revocation/status checking availability | EVG | 14.08 | |
| 4.9.9 | On-line revocation/status checking availability | SMIME | 14.57 | |
| 4.9.10 | On-line revocation checking requirements | CS | 28.27 | |
| 4.9.10 | On-line revocation checking requirements | EVG | 2.92 | |
| 4.9.10 | On-line revocation checking requirements | SMIME | 47.58 | |
| 4.9.11 | Other forms of revocation advertisements available | CS | 18.3 | |
| 4.9.11 | Other forms of revocation advertisements available | EVG | 87.3 | |
| 4.9.11 | Other forms of revocation advertisements available | SMIME | 87.3 | |
| 4.9.12 | Special requirements re key compromise | CS | 100.0 | |
| 4.9.12 | Special requirements re key compromise | EVG | 65.15 | |
| 4.9.12 | Special requirements re key compromise | SMIME | 100.0 | |
| 4.9.13 | Circumstances for suspension | CS | 92.66 | |
| 4.9.13 | Circumstances for suspension | EVG | 43.14 | |
| 4.9.13 | Circumstances for suspension | SMIME | 37.25 | |
| 4.9.14 | Who can request suspension | CS | 100.0 | |
| 4.9.14 | Who can request suspension | EVG | 79.49 | |
| 4.9.14 | Who can request suspension | SMIME | 79.49 | |
| 4.9.15 | Procedure for suspension request | CS | 100.0 | |
| 4.9.15 | Procedure for suspension request | EVG | 82.22 | |
| 4.9.15 | Procedure for suspension request | SMIME | 82.22 | |
| 4.9.16 | Limits on suspension period | CS | 100.0 | |
| 4.9.16 | Limits on suspension period | EVG | 80.0 | |
| 4.9.16 | Limits on suspension period | SMIME | 80.0 | |
| 4.10 | Certificate status services | CS | 100.0 | |
| 4.10 | Certificate status services | EVG | 100.0 | |
| 4.10 | Certificate status services | SMIME | 100.0 | |
| 4.10.1 | Operational characteristics | CS | 67.28 | |
| 4.10.1 | Operational characteristics | EVG | 34.59 | |
| 4.10.1 | Operational characteristics | SMIME | 97.72 | |
| 4.10.2 | Service availability | CS | 47.26 | |
| 4.10.2 | Service availability | EVG | 7.52 | |
| 4.10.2 | Service availability | SMIME | 99.29 | |
| 4.10.3 | Optional features | CS | 100.0 | |
| 4.10.3 | Optional features | EVG | 100.0 | |
| 4.10.3 | Optional features | SMIME | 100.0 | |
| 4.11 | End of subscription | CS | 100.0 | |
| 4.11 | End of subscription | EVG | 100.0 | |
| 4.11 | End of subscription | SMIME | 100.0 | |
| 4.12 | Key escrow and recovery | CS | 100.0 | |
| 4.12 | Key escrow and recovery | EVG | 100.0 | |
| 4.12 | Key escrow and recovery | SMIME | 100.0 | |
| 4.12.1 | Key escrow and recovery policy and practices | CS | 100.0 | |
| 4.12.1 | Key escrow and recovery policy and practices | EVG | 100.0 | |
| 4.12.1 | Key escrow and recovery policy and practices | SMIME | 19.8 | |
| 4.12.2 | Session key encapsulation and recovery policy and practices | CS | 100.0 | |
| 4.12.2 | Session key encapsulation and recovery policy and practices | EVG | 88.89 | |
| 4.12.2 | Session key encapsulation and recovery policy and practices | SMIME | 88.89 | |
| 5 | FACILITY, MANAGEMENT, AND OPERATIONAL CONTROLS | CS | 98.84 | Title doesn not match BRs MANAGEMENT, OPERATIONAL, AND PHYSICAL CONTROLS |
| 5 | FACILITY, MANAGEMENT, AND OPERATIONAL CONTROLS | EVG | 1.74 | Title doesn not match BRs MANAGEMENT, OPERATIONAL, AND PHYSICAL CONTROLS |
| 5 | FACILITY, MANAGEMENT, AND OPERATIONAL CONTROLS | SMIME | 50.56 | Title doesn not match BRs MANAGEMENT, OPERATIONAL, AND PHYSICAL CONTROLS |
| 5.1 | Physical controls | CS | 81.63 | Title doesn not match BRs PHYSICAL SECURITY CONTROLS |
| 5.1 | Physical controls | EVG | 81.63 | Title doesn not match BRs PHYSICAL SECURITY CONTROLS |
| 5.1 | Physical controls | SMIME | 81.63 | Title doesn not match BRs PHYSICAL SECURITY CONTROLS |
| 5.1.1 | Site location and construction | CS | 100.0 | |
| 5.1.1 | Site location and construction | EVG | 100.0 | |
| 5.1.1 | Site location and construction | SMIME | 100.0 | |
| 5.1.2 | Physical access | CS | 100.0 | |
| 5.1.2 | Physical access | EVG | 100.0 | |
| 5.1.2 | Physical access | SMIME | 100.0 | |
| 5.1.3 | Power and air conditioning | CS | 100.0 | |
| 5.1.3 | Power and air conditioning | EVG | 100.0 | |
| 5.1.3 | Power and air conditioning | SMIME | 100.0 | |
| 5.1.4 | Water exposures | CS | 100.0 | |
| 5.1.4 | Water exposures | EVG | 100.0 | |
| 5.1.4 | Water exposures | SMIME | 100.0 | |
| 5.1.5 | Fire prevention and protection | CS | 100.0 | |
| 5.1.5 | Fire prevention and protection | EVG | 100.0 | |
| 5.1.5 | Fire prevention and protection | SMIME | 100.0 | |
| 5.1.6 | Media storage | CS | 100.0 | |
| 5.1.6 | Media storage | EVG | 100.0 | |
| 5.1.6 | Media storage | SMIME | 100.0 | |
| 5.1.7 | Waste disposal | CS | 100.0 | |
| 5.1.7 | Waste disposal | EVG | 100.0 | |
| 5.1.7 | Waste disposal | SMIME | 100.0 | |
| 5.1.8 | Off-site backup | CS | 100.0 | |
| 5.1.8 | Off-site backup | EVG | 100.0 | |
| 5.1.8 | Off-site backup | SMIME | 100.0 | |
| 5.2 | Procedural controls | CS | 100.0 | |
| 5.2 | Procedural controls | EVG | 100.0 | |
| 5.2 | Procedural controls | SMIME | 100.0 | |
| 5.2.1 | Trusted roles | CS | 100.0 | |
| 5.2.1 | Trusted roles | EVG | 100.0 | |
| 5.2.1 | Trusted roles | SMIME | 100.0 | |
| 5.2.2 | Number of persons required per task | CS | 96.5 | Title doesn not match BRs Number of Individuals Required per Task |
| 5.2.2 | Number of persons required per task | EVG | 28.22 | Title doesn not match BRs Number of Individuals Required per Task |
| 5.2.2 | Number of persons required per task | SMIME | 96.5 | Title doesn not match BRs Number of Individuals Required per Task |
| 5.2.3 | Identification and authentication for each role | CS | 100.0 | |
| 5.2.3 | Identification and authentication for each role | EVG | 100.0 | |
| 5.2.3 | Identification and authentication for each role | SMIME | 100.0 | |
| 5.2.4 | Roles requiring separation of duties | CS | 12.97 | |
| 5.2.4 | Roles requiring separation of duties | EVG | 12.52 | |
| 5.2.4 | Roles requiring separation of duties | SMIME | 100.0 | |
| 5.3 | Personnel controls | CS | 100.0 | |
| 5.3 | Personnel controls | EVG | 100.0 | |
| 5.3 | Personnel controls | SMIME | 100.0 | |
| 5.3.1 | Qualifications, experience, and clearance requirements | CS | 100.0 | |
| 5.3.1 | Qualifications, experience, and clearance requirements | EVG | 34.46 | |
| 5.3.1 | Qualifications, experience, and clearance requirements | SMIME | 100.0 | |
| 5.3.2 | Background check procedures | CS | 4.54 | |
| 5.3.2 | Background check procedures | EVG | 4.55 | |
| 5.3.2 | Background check procedures | SMIME | 100.0 | |
| 5.3.3 | Training requirements and procedures | CS | 91.39 | Title does not match RFC 3647 Training requirements |
| 5.3.3 | Training requirements | EVG | 5.67 | Title doesn not match BRs Training Requirements and Procedures |
| 5.3.3 | Training requirements | SMIME | 95.67 | Title doesn not match BRs Training Requirements and Procedures |
| 5.3.4 | Retraining frequency and requirements | CS | 100.0 | |
| 5.3.4 | Retraining frequency and requirements | EVG | 41.0 | |
| 5.3.4 | Retraining frequency and requirements | SMIME | 100.0 | |
| 5.3.5 | Job rotation frequency and sequence | CS | 100.0 | |
| 5.3.5 | Job rotation frequency and sequence | EVG | 100.0 | |
| 5.3.5 | Job rotation frequency and sequence | SMIME | 100.0 | |
| 5.3.6 | Sanctions for unauthorized actions | CS | 100.0 | |
| 5.3.6 | Sanctions for unauthorized actions | EVG | 100.0 | |
| 5.3.6 | Sanctions for unauthorized actions | SMIME | 100.0 | |
| 5.3.7 | Independent contractor requirements | CS | 97.29 | Title doesn not match BRs Independent Contractor Controls |
| 5.3.7 | Independent contractor requirements | EVG | 21.14 | Title doesn not match BRs Independent Contractor Controls |
| 5.3.7 | Independent contractor requirements | SMIME | 95.24 | Title doesn not match BRs Independent Contractor Controls |
| 5.3.8 | Documentation supplied to personnel | CS | 100.0 | |
| 5.3.8 | Documentation supplied to personnel | EVG | 100.0 | |
| 5.3.8 | Documentation supplied to personnel | SMIME | 100.0 | |
| 5.4 | Audit logging procedures | CS | 100.0 | |
| 5.4 | Audit logging procedures | EVG | 49.09 | |
| 5.4 | Audit logging procedures | SMIME | 100.0 | |
| 5.4.1 | Types of events recorded | CS | 2.37 | |
| 5.4.1 | Types of events recorded | EVG | 2.37 | |
| 5.4.1 | Types of events recorded | SMIME | 69.38 | |
| 5.4.2 | Frequency of processing log | CS | 91.18 | Title doesn not match BRs Frequency of processing audit log |
| 5.4.2 | Frequency of processing log | EVG | 91.18 | Title doesn not match BRs Frequency of processing audit log |
| 5.4.2 | Frequency of processing audit log | SMIME | 100.0 | Title does not match RFC 3647 Frequency of processing log |
| 5.4.3 | Retention period for audit log | CS | 63.9 | |
| 5.4.3 | Retention period for audit log | EVG | 6.02 | |
| 5.4.3 | Retention period for audit log | SMIME | 99.13 | |
| 5.4.4 | Protection of audit log | CS | 100.0 | |
| 5.4.4 | Protection of audit log | EVG | 100.0 | |
| 5.4.4 | Protection of audit log | SMIME | 100.0 | |
| 5.4.5 | Audit log backup procedures | CS | 100.0 | |
| 5.4.5 | Audit log backup procedures | EVG | 100.0 | |
| 5.4.5 | Audit log backup procedures | SMIME | 100.0 | |
| 5.4.6 | Audit collection system (internal vs. external) | CS | 100.0 | |
| 5.4.6 | Audit collection system (internal vs. external) | EVG | 100.0 | |
| 5.4.6 | Audit collection System (internal vs. external) | SMIME | 100.0 | |
| 5.4.7 | Notification to event-causing subject | CS | 100.0 | |
| 5.4.7 | Notification to event-causing subject | EVG | 100.0 | |
| 5.4.7 | Notification to event-causing subject | SMIME | 100.0 | |
| 5.4.8 | Vulnerability assessments | CS | 100.0 | |
| 5.4.8 | Vulnerability assessments | EVG | 8.66 | |
| 5.4.8 | Vulnerability assessments | SMIME | 95.91 | |
| 5.5 | Records archival | CS | 100.0 | |
| 5.5 | Records archival | EVG | 100.0 | |
| 5.5 | Records archival | SMIME | 100.0 | |
| 5.5.1 | Types of records archived | CS | 99.9 | |
| 5.5.1 | Types of records archived | EVG | 11.39 | |
| 5.5.1 | Types of records archived | SMIME | 99.9 | |
| 5.5.2 | Retention period for archive | CS | 99.74 | |
| 5.5.2 | Retention period for archive | EVG | 4.69 | |
| 5.5.2 | Retention period for archive | SMIME | 99.96 | |
| 5.5.3 | Protection of archive | CS | 100.0 | |
| 5.5.3 | Protection of archive | EVG | 100.0 | |
| 5.5.3 | Protection of archive | SMIME | 100.0 | |
| 5.5.4 | Archive backup procedures | CS | 100.0 | |
| 5.5.4 | Archive backup procedures | EVG | 100.0 | |
| 5.5.4 | Archive backup procedures | SMIME | 100.0 | |
| 5.5.5 | Requirements for time-stamping of records | CS | 100.0 | |
| 5.5.5 | Requirements for time-stamping of records | EVG | 100.0 | |
| 5.5.5 | Requirements for time-stamping of records | SMIME | 100.0 | |
| 5.5.6 | Archive collection system (internal or external) | CS | 100.0 | |
| 5.5.6 | Archive collection system (internal or external) | EVG | 100.0 | |
| 5.5.6 | Archive collection system (internal or external) | SMIME | 100.0 | |
| 5.5.7 | Procedures to obtain and verify archive information | CS | 100.0 | |
| 5.5.7 | Procedures to obtain and verify archive information | EVG | 100.0 | |
| 5.5.7 | Procedures to obtain and verify archive information | SMIME | 100.0 | |
| 5.6 | Key changeover | CS | 100.0 | |
| 5.6 | Key changeover | EVG | 100.0 | |
| 5.6 | Key changeover | SMIME | 100.0 | |
| 5.7 | Compromise and disaster recovery | CS | 100.0 | |
| 5.7 | Compromise and disaster recovery | EVG | 100.0 | |
| 5.7 | Compromise and disaster recovery | SMIME | 100.0 | |
| 5.7.1 | Incident and compromise handling procedures | CS | 100.0 | |
| 5.7.1 | Incident and compromise handling procedures | EVG | 5.47 | |
| 5.7.1 | Incident and compromise handling procedures | SMIME | 64.23 | |
| 5.7.2 | Computing resources, software, and/or data are corrupted | CS | 83.21 | Title doesn not match BRs Recovery Procedures if Computing resources, software, and/or data are corrupted |
| 5.7.2 | Computing resources, software, and/or data are corrupted | EVG | 83.21 | Title doesn not match BRs Recovery Procedures if Computing resources, software, and/or data are corrupted |
| 5.7.2 | Computing resources, software, and/or data are corrupted | SMIME | 83.21 | Title doesn not match BRs Recovery Procedures if Computing resources, software, and/or data are corrupted |
| 5.7.3 | Entity private key compromise procedures | CS | 61.36 | Title doesn not match BRs Recovery Procedures after Key Compromise |
| 5.7.3 | Entity private key compromise procedures | EVG | 61.36 | Title doesn not match BRs Recovery Procedures after Key Compromise |
| 5.7.3 | Entity private key compromise procedures | SMIME | 61.36 | Title doesn not match BRs Recovery Procedures after Key Compromise |
| 5.7.4 | Business continuity capabilities after a disaster | CS | 100.0 | |
| 5.7.4 | Business continuity capabilities after a disaster | EVG | 100.0 | |
| 5.7.4 | Business continuity capabilities after a disaster | SMIME | 100.0 | |
| 5.8 | CA or RA termination | CS | 9.56 | |
| 5.8 | CA or RA termination | EVG | 100.0 | |
| 5.8 | CA or RA termination | SMIME | 100.0 | |
| 6 | TECHNICAL SECURITY CONTROLS | CS | 100.0 | |
| 6 | TECHNICAL SECURITY CONTROLS | EVG | 100.0 | |
| 6 | TECHNICAL SECURITY CONTROLS | SMIME | 100.0 | |
| 6.1 | Key pair generation and installation | CS | 100.0 | |
| 6.1 | Key pair generation and installation | EVG | 100.0 | |
| 6.1 | Key pair generation and installation | SMIME | 100.0 | |
| 6.1.1 | Key pair generation | CS | 100.0 | |
| 6.1.1 | Key pair generation | EVG | 4.19 | |
| 6.1.1 | Key pair generation | SMIME | 100.0 | |
| 6.1.1.1 | CA Key Pair Generation | CS | 97.14 | |
| 6.1.1.1 | CA key pair generation | SMIME | 57.18 | |
| 6.1.1.2 | RA Key Pair Generation | CS | 100.0 | |
| 6.1.1.2 | RA key pair generation | SMIME | 100.0 | |
| 6.1.1.3 | Subscriber Key Pair Generation | CS | 84.79 | |
| 6.1.1.3 | Subscriber key pair generation | SMIME | 81.46 | |
| 6.1.2 | Private key delivery to subscriber | CS | 56.41 | |
| 6.1.2 | Private key delivery to subscriber | EVG | 15.26 | |
| 6.1.2 | Private key delivery to subscriber | SMIME | 30.22 | |
| 6.1.3 | Public key delivery to certificate issuer | CS | 100.0 | |
| 6.1.3 | Public key delivery to certificate issuer | EVG | 100.0 | |
| 6.1.3 | Public key delivery to certificate issuer | SMIME | 100.0 | |
| 6.1.4 | CA public key delivery to relying parties | CS | 100.0 | |
| 6.1.4 | CA public key delivery to relying parties | EVG | 100.0 | |
| 6.1.4 | CA public key delivery to relying parties | SMIME | 100.0 | |
| 6.1.5 | Key sizes | CS | 6.93 | |
| 6.1.5 | Key sizes | EVG | 6.93 | |
| 6.1.5 | Key sizes | SMIME | 84.88 | |
| 6.1.6 | Public key parameters generation and quality checking | CS | 100.0 | |
| 6.1.6 | Public key parameters generation and quality checking | EVG | 16.33 | |
| 6.1.6 | Public key parameters generation and quality checking | SMIME | 63.6 | |
| 6.1.7 | Key usage purposes | CS | 5.15 | Title doesn not match BRs Key usage purposes (as per X.509 v3 key usage field) |
| 6.1.7 | Key usage purposes (as per X.509 v3 key usage field) | EVG | 19.85 | |
| 6.1.7 | Key usage purposes (as per X.509 v3 key usage field) | SMIME | 45.65 | |
| 6.2 | Private Key Protection and Cryptographic Module Engineering Controls | CS | 100.0 | |
| 6.2 | Private Key Protection and Cryptographic Module Engineering Controls | EVG | 20.82 | |
| 6.2 | Private key protection and cryptographic module engineering controls | SMIME | 99.26 | |
| 6.2.1 | Cryptographic module standards and controls | CS | 100.0 | |
| 6.2.1 | Cryptographic module standards and controls | EVG | 100.0 | |
| 6.2.1 | Cryptographic module standards and controls | SMIME | 100.0 | |
| 6.2.2 | Private key (n out of m) multi-person control | CS | 100.0 | |
| 6.2.2 | Private key (n out of m) multi-person control | EVG | 100.0 | |
| 6.2.2 | Private key (n out of m) multi-person control | SMIME | 100.0 | |
| 6.2.3 | Private key escrow | CS | 100.0 | |
| 6.2.3 | Private key escrow | EVG | 100.0 | |
| 6.2.3 | Private key escrow | SMIME | 100.0 | |
| 6.2.4 | Private key backup | CS | 90.54 | |
| 6.2.4 | Private key backup | EVG | 44.9 | |
| 6.2.4 | Private key backup | SMIME | 90.54 | |
| 6.2.5 | Private key archival | CS | 100.0 | |
| 6.2.5 | Private key archival | EVG | 26.52 | |
| 6.2.5 | Private key archival | SMIME | 100.0 | |
| 6.2.6 | Private key transfer into or from a cryptographic module | CS | 78.08 | |
| 6.2.6 | Private key transfer into or from a cryptographic module | EVG | 20.69 | |
| 6.2.6 | Private key transfer into or from a cryptographic module | SMIME | 100.0 | |
| 6.2.7 | Private key storage on cryptographic module | CS | 22.6 | |
| 6.2.7 | Private key storage on cryptographic module | EVG | 22.6 | |
| 6.2.7 | Private key storage on cryptographic module | SMIME | 100.0 | |
| 6.2.8 | Method of activating private key | CS | 82.54 | Title doesn not match BRs Activating Private Keys |
| 6.2.8 | Method of activating private key | EVG | 82.54 | Title doesn not match BRs Activating Private Keys |
| 6.2.8 | Method of activating private key | SMIME | 82.54 | Title doesn not match BRs Activating Private Keys |
| 6.2.9 | Method of deactivating private key | CS | 83.58 | Title doesn not match BRs Deactivating Private Keys |
| 6.2.9 | Method of deactivating private key | EVG | 83.58 | Title doesn not match BRs Deactivating Private Keys |
| 6.2.9 | Method of deactivating private key | SMIME | 83.58 | Title doesn not match BRs Deactivating Private Keys |
| 6.2.10 | Method of destroying private key | CS | 83.08 | Title doesn not match BRs Destroying Private Keys |
| 6.2.10 | Method of destroying private key | EVG | 83.08 | Title doesn not match BRs Destroying Private Keys |
| 6.2.10 | Method of destroying private key | SMIME | 83.08 | Title doesn not match BRs Destroying Private Keys |
| 6.2.11 | Cryptographic Module Rating | CS | 100.0 | |
| 6.2.11 | Cryptographic Module Rating | EVG | 100.0 | |
| 6.2.11 | Cryptographic module rating | SMIME | 100.0 | |
| 6.3 | Other aspects of key pair management | CS | 100.0 | |
| 6.3 | Other aspects of key pair management | EVG | 100.0 | |
| 6.3 | Other aspects of key pair management | SMIME | 100.0 | |
| 6.3.1 | Public key archival | CS | 100.0 | |
| 6.3.1 | Public key archival | EVG | 100.0 | |
| 6.3.1 | Public key archival | SMIME | 100.0 | |
| 6.3.2 | Certificate operational periods and key pair usage periods | CS | 10.9 | |
| 6.3.2 | Certificate operational periods and key pair usage periods | EVG | 25.0 | |
| 6.3.2 | Certificate operational periods and key pair usage periods | SMIME | 76.03 | |
| 6.4 | Activation data | CS | 100.0 | |
| 6.4 | Activation data | EVG | 100.0 | |
| 6.4 | Activation data | SMIME | 100.0 | |
| 6.4.1 | Activation data generation and installation | CS | 100.0 | |
| 6.4.1 | Activation data generation and installation | EVG | 100.0 | |
| 6.4.1 | Activation data generation and installation | SMIME | 100.0 | |
| 6.4.2 | Activation data protection | CS | 100.0 | |
| 6.4.2 | Activation data protection | EVG | 100.0 | |
| 6.4.2 | Activation data protection | SMIME | 100.0 | |
| 6.4.3 | Other aspects of activation data | CS | 100.0 | |
| 6.4.3 | Other aspects of activation data | EVG | 100.0 | |
| 6.4.3 | Other aspects of activation data | SMIME | 100.0 | |
| 6.5 | Computer security controls | CS | 100.0 | |
| 6.5 | Computer security controls | EVG | 100.0 | |
| 6.5 | Computer security controls | SMIME | 100.0 | |
| 6.5.1 | Specific computer security technical requirements | CS | 100.0 | |
| 6.5.1 | Specific computer security technical requirements | EVG | 47.96 | |
| 6.5.1 | Specific computer security technical requirements | SMIME | 100.0 | |
| 6.5.2 | Computer security rating | CS | 100.0 | |
| 6.5.2 | Computer security rating | EVG | 100.0 | |
| 6.5.2 | Computer security rating | SMIME | 100.0 | |
| 6.6 | Life cycle technical controls | CS | 100.0 | |
| 6.6 | Life cycle technical controls | EVG | 100.0 | |
| 6.6 | Life cycle technical controls | SMIME | 100.0 | |
| 6.6.1 | System development controls | CS | 100.0 | |
| 6.6.1 | System development controls | EVG | 100.0 | |
| 6.6.1 | System development controls | SMIME | 100.0 | |
| 6.6.2 | Security management controls | CS | 100.0 | |
| 6.6.2 | Security management controls | EVG | 100.0 | |
| 6.6.2 | Security management controls | SMIME | 100.0 | |
| 6.6.3 | Life cycle security controls | CS | 100.0 | |
| 6.6.3 | Life cycle security controls | EVG | 100.0 | |
| 6.6.3 | Life cycle security controls | SMIME | 100.0 | |
| 6.7 | Network security controls | CS | 100.0 | |
| 6.7 | Network security controls | EVG | 100.0 | |
| 6.7 | Network security controls | SMIME | 29.47 | |
| 6.8 | Time-stamping | CS | 3.61 | |
| 6.8 | Time-stamping | EVG | 100.0 | |
| 6.8 | Time-stamping | SMIME | 100.0 | |
| 7 | CERTIFICATE, CRL, AND OCSP PROFILES | CS | 100.0 | |
| 7 | CERTIFICATE, CRL, AND OCSP PROFILES | EVG | 100.0 | |
| 7 | CERTIFICATE, CRL, AND OCSP PROFILES | SMIME | 100.0 | |
| 7.1 | Certificate profile | CS | 54.14 | |
| 7.1 | Certificate profile | EVG | 28.84 | |
| 7.1 | Certificate profile | SMIME | 40.43 | |
| 7.1.1 | Version number(s) | CS | 100.0 | |
| 7.1.1 | Version number(s) | EVG | 50.0 | |
| 7.1.1 | Version number(s) | SMIME | 93.91 | |
| 7.1.2 | Certificate extensions | CS | 6.04 | Title doesn not match BRs Certificate Content and Extensions |
| 7.1.2 | Certificate extensions | EVG | 4.68 | Title doesn not match BRs Certificate Content and Extensions |
| 7.1.2 | Certificate content and extensions; application of RFC 6818 | SMIME | 10.96 | Title doesn not match BRs Certificate Content and Extensions; Title does not match RFC 3647 Certificate extensions |
| 7.1.2.1 | Root CA Certificate | CS | 4.9 | Title doesn not match BRs Root CA Certificate Profile |
| 7.1.2.1 | Subject Alternative Name Extension | EVG | 3.4 | Title doesn not match BRs Root CA Certificate Profile |
| 7.1.2.1 | Root CA certificates | SMIME | 3.78 | Title doesn not match BRs Root CA Certificate Profile |
| 7.1.2.2 | Subordinate CA Certificate | CS | 2.44 | Title doesn not match BRs Cross-Certified Subordinate CA Certificate Profile |
| 7.1.2.2 | CA/Browser Forum Organization Identifier Extension | EVG | 4.67 | Title doesn not match BRs Cross-Certified Subordinate CA Certificate Profile |
| 7.1.2.2 | Subordinate CA certificates | SMIME | 1.57 | Title doesn not match BRs Cross-Certified Subordinate CA Certificate Profile |
| 7.1.2.3 | Code signing and Timestamp Certificate | CS | 2.89 | Title doesn not match BRs Technically Constrained Non-TLS Subordinate CA Certificate Profile |
| 7.1.2.3 | Subscriber certificates | SMIME | 1.94 | Title doesn not match BRs Technically Constrained Non-TLS Subordinate CA Certificate Profile |
| 7.1.2.4 | All Certificates | CS | 4.89 | Title doesn not match BRs Technically Constrained Precertificate Signing CA Certificate Profile |
| 7.1.2.4 | All certificates | SMIME | 4.86 | Title doesn not match BRs Technically Constrained Precertificate Signing CA Certificate Profile |
| 7.1.3 | Algorithm object identifiers | CS | 100.0 | |
| 7.1.3 | Algorithm object identifiers | EVG | 100.0 | |
| 7.1.3 | Algorithm object identifiers | SMIME | 100.0 | |
| 7.1.3.1 | SubjectPublicKeyInfo | CS | 40.35 | |
| 7.1.3.1 | SubjectPublicKeyInfo | SMIME | 94.23 | |
| 7.1.3.1.1 | RSA | SMIME | 96.88 | |
| 7.1.3.1.2 | ECDSA | SMIME | 30.45 | |
| 7.1.3.2 | Signature AlgorithmIdentifier | CS | 60.39 | |
| 7.1.3.2 | Signature AlgorithmIdentifier | SMIME | 95.49 | |
| 7.1.3.2.1 | RSA | CS | 8.3 | |
| 7.1.3.2.1 | RSA | SMIME | 51.23 | |
| 7.1.3.2.2 | ECDSA | CS | 27.71 | |
| 7.1.3.2.2 | ECDSA | SMIME | 69.46 | |
| 7.1.4 | Name forms | CS | 10.73 | |
| 7.1.4 | Name forms | EVG | 10.73 | |
| 7.1.4 | Name forms | SMIME | 27.04 | |
| 7.1.4.1 | Name encoding | CS | 5.24 | |
| 7.1.4.1 | Issuer Information | EVG | 6.13 | Title doesn not match BRs Name Encoding |
| 7.1.4.1 | Name encoding | SMIME | 49.16 | |
| 7.1.4.2 | Subject information - Subscriber Certificates | CS | 2.47 | Title doesn not match BRs Subject Attribute Encoding |
| 7.1.4.2 | Subject Distinguished Name Fields | EVG | 2.76 | Title doesn not match BRs Subject Attribute Encoding |
| 7.1.4.2 | Subject information - subscriber certificates | SMIME | 1.68 | Title doesn not match BRs Subject Attribute Encoding |
| 7.1.4.3 | Additional Technical Requirements for EV Certificates | EVG | 2.56 | Title doesn not match BRs Subscriber Certificate Common Name Attribute |
| 7.1.4.3 | Subject information - root certificates and subordinate CA certificates | SMIME | 1.77 | Title doesn not match BRs Subscriber Certificate Common Name Attribute |
| 7.1.6 | Certificate policy object identifier | CS | 30.89 | |
| 7.1.6 | Certificate policy object identifier | EVG | 35.87 | |
| 7.1.6 | Certificate policy object identifier | SMIME | 32.39 | |
| 7.1.6.1 | Reserved Certificate Policy Identifiers | CS | 54.07 | |
| 7.1.6.1 | EV Subscriber Certificates | EVG | 17.25 | Title doesn not match BRs Reserved Certificate Policy Identifiers |
| 7.1.6.1 | Reserved certificate policy identifiers | SMIME | 21.72 | |
| 7.1.7 | Usage of Policy Constraints extension | CS | 100.0 | |
| 7.1.7 | Usage of Policy Constraints extension | EVG | 100.0 | |
| 7.1.7 | Usage of policy constraints extension | SMIME | 100.0 | |
| 7.1.8 | Policy qualifiers syntax and semantics | CS | 100.0 | |
| 7.1.8 | Policy qualifiers syntax and semantics | EVG | 100.0 | |
| 7.1.8 | Policy qualifiers syntax and semantics | SMIME | 100.0 | |
| 7.1.9 | Processing semantics for the critical Certificate Policies extension | CS | 100.0 | |
| 7.1.9 | Processing semantics for the critical Certificate Policies extension | EVG | 100.0 | |
| 7.1.9 | Processing semantics for the critical certificate policies extension | SMIME | 100.0 | |
| 7.2 | CRL profile | CS | 1.71 | |
| 7.2 | CRL profile | EVG | 0.84 | |
| 7.2 | CRL profile | SMIME | 0.84 | |
| 7.2.1 | Version number(s) | CS | 41.3 | |
| 7.2.1 | Version number(s) | EVG | 41.3 | |
| 7.2.1 | Version number(s) | SMIME | 41.3 | |
| 7.2.2 | CRL and CRL entry extensions | CS | 1.26 | |
| 7.2.2 | CRL and CRL entry extensions | EVG | 1.15 | |
| 7.2.2 | CRL and CRL entry extensions | SMIME | 2.64 | |
| 7.3 | OCSP profile | CS | 7.94 | |
| 7.3 | OCSP profile | EVG | 7.54 | |
| 7.3 | OCSP profile | SMIME | 51.34 | |
| 7.3.1 | Version number(s) | CS | 100.0 | |
| 7.3.1 | Version number(s) | EVG | 100.0 | |
| 7.3.1 | Version number(s) | SMIME | 100.0 | |
| 7.3.2 | OCSP extensions | CS | 26.57 | |
| 7.3.2 | OCSP extensions | EVG | 26.57 | |
| 7.3.2 | OCSP extensions | SMIME | 97.19 | |
| 8 | COMPLIANCE AUDIT AND OTHER ASSESSMENTS | CS | 28.38 | |
| 8 | COMPLIANCE AUDIT AND OTHER ASSESSMENTS | EVG | 6.26 | |
| 8 | COMPLIANCE AUDIT AND OTHER ASSESSMENTS | SMIME | 26.72 | |
| 8.1 | Frequency or circumstances of assessment | CS | 69.37 | |
| 8.1 | Frequency or circumstances of assessment | EVG | 13.15 | |
| 8.1 | Frequency or circumstances of assessment | SMIME | 88.49 | |
| 8.2 | Identity/qualifications of assessor | CS | 100.0 | |
| 8.2 | Identity/qualifications of assessor | EVG | 19.08 | |
| 8.2 | Identity/qualifications of assessor | SMIME | 76.55 | |
| 8.3 | Assessor's relationship to assessed entity | CS | 100.0 | |
| 8.3 | Assessor's relationship to assessed entity | EVG | 100.0 | |
| 8.3 | Assessor's relationship to assessed entity | SMIME | 100.0 | |
| 8.4 | Topics covered by assessment | CS | 49.61 | |
| 8.4 | Topics covered by assessment | EVG | 2.85 | |
| 8.4 | Topics covered by assessment | SMIME | 61.79 | |
| 8.5 | Actions taken as a result of deficiency | CS | 100.0 | |
| 8.5 | Actions taken as a result of deficiency | EVG | 100.0 | |
| 8.5 | Actions taken as a result of deficiency | SMIME | 100.0 | |
| 8.6 | Communication of results | CS | 99.49 | |
| 8.6 | Communication of results | EVG | 2.55 | |
| 8.6 | Communication of results | SMIME | 68.42 | |
| 8.7 | Self-audits | CS | 5.44 | |
| 8.7 | Pre-issuance Readiness Audit | EVG | 1.54 | Title doesn not match BRs Self-Audits |
| 8.7 | Self audits | SMIME | 30.93 | Title doesn not match BRs Self-Audits |
| 9 | OTHER BUSINESS AND LEGAL MATTERS | CS | 100.0 | |
| 9 | OTHER BUSINESS AND LEGAL MATTERS | EVG | 100.0 | |
| 9 | OTHER BUSINESS AND LEGAL MATTERS | SMIME | 100.0 | |
| 9.1 | Fees | CS | 100.0 | |
| 9.1 | Fees | EVG | 100.0 | |
| 9.1 | Fees | SMIME | 100.0 | |
| 9.1.1 | Certificate issuance or renewal fees | CS | 100.0 | |
| 9.1.1 | Certificate issuance or renewal fees | EVG | 100.0 | |
| 9.1.1 | Certificate issuance or renewal fees | SMIME | 100.0 | |
| 9.1.2 | Certificate access fees | CS | 100.0 | |
| 9.1.2 | Certificate access fees | EVG | 100.0 | |
| 9.1.2 | Certificate access fees | SMIME | 100.0 | |
| 9.1.3 | Revocation or status information access fees | CS | 100.0 | |
| 9.1.3 | Revocation or status information access fees | EVG | 100.0 | |
| 9.1.3 | Revocation or status information access fees | SMIME | 100.0 | |
| 9.1.4 | Fees for other services | CS | 100.0 | |
| 9.1.4 | Fees for other services | EVG | 100.0 | |
| 9.1.4 | Fees for other services | SMIME | 100.0 | |
| 9.1.5 | Refund policy | CS | 100.0 | |
| 9.1.5 | Refund policy | EVG | 100.0 | |
| 9.1.5 | Refund policy | SMIME | 100.0 | |
| 9.2 | Financial responsibility | CS | 100.0 | |
| 9.2 | Financial responsibility | EVG | 100.0 | |
| 9.2 | Financial responsibility | SMIME | 100.0 | |
| 9.2.1 | Insurance coverage | CS | 25.14 | |
| 9.2.1 | Insurance coverage | EVG | 3.25 | |
| 9.2.1 | Insurance coverage | SMIME | 100.0 | |
| 9.2.2 | Other assets | CS | 100.0 | |
| 9.2.2 | Other assets | EVG | 100.0 | |
| 9.2.2 | Other assets | SMIME | 100.0 | |
| 9.2.3 | Insurance or warranty coverage for end-entities | CS | 100.0 | |
| 9.2.3 | Insurance or warranty coverage for end-entities | EVG | 100.0 | |
| 9.2.3 | Insurance or warranty coverage for end-entities | SMIME | 100.0 | |
| 9.3 | Confidentiality of business information | CS | 100.0 | |
| 9.3 | Confidentiality of business information | EVG | 100.0 | |
| 9.3 | Confidentiality of business information | SMIME | 100.0 | |
| 9.3.1 | Scope of confidential information | CS | 100.0 | |
| 9.3.1 | Scope of confidential information | EVG | 100.0 | |
| 9.3.1 | Scope of confidential information | SMIME | 100.0 | |
| 9.3.2 | Information not within the scope of confidential information | CS | 100.0 | |
| 9.3.2 | Information not within the scope of confidential information | EVG | 100.0 | |
| 9.3.2 | Information not within the scope of confidential information | SMIME | 100.0 | |
| 9.3.3 | Responsibility to protect confidential information | CS | 100.0 | |
| 9.3.3 | Responsibility to protect confidential information | EVG | 100.0 | |
| 9.3.3 | Responsibility to protect confidential information | SMIME | 100.0 | |
| 9.4 | Privacy of personal information | CS | 100.0 | |
| 9.4 | Privacy of personal information | EVG | 100.0 | |
| 9.4 | Privacy of personal information | SMIME | 100.0 | |
| 9.4.1 | Privacy plan | CS | 100.0 | |
| 9.4.1 | Privacy plan | EVG | 100.0 | |
| 9.4.1 | Privacy plan | SMIME | 7.73 | |
| 9.4.2 | Information treated as private | CS | 100.0 | |
| 9.4.2 | Information treated as private | EVG | 100.0 | |
| 9.4.2 | Information treated as private | SMIME | 21.12 | |
| 9.4.3 | Information not deemed private | CS | 100.0 | |
| 9.4.3 | Information not deemed private | EVG | 100.0 | |
| 9.4.3 | Information not deemed private | SMIME | 100.0 | |
| 9.4.4 | Responsibility to protect private information | CS | 100.0 | |
| 9.4.4 | Responsibility to protect private information | EVG | 100.0 | |
| 9.4.4 | Responsibility to protect private information | SMIME | 29.97 | |
| 9.4.5 | Notice and consent to use private information | CS | 100.0 | |
| 9.4.5 | Notice and consent to use private information | EVG | 100.0 | |
| 9.4.5 | Notice and consent to use private information | SMIME | 21.21 | |
| 9.4.6 | Disclosure pursuant to judicial or administrative process | CS | 100.0 | |
| 9.4.6 | Disclosure pursuant to judicial or administrative process | EVG | 100.0 | |
| 9.4.6 | Disclosure pursuant to judicial or administrative process | SMIME | 100.0 | |
| 9.4.7 | Other information disclosure circumstances | CS | 100.0 | |
| 9.4.7 | Other information disclosure circumstances | EVG | 100.0 | |
| 9.4.7 | Other information disclosure circumstances | SMIME | 100.0 | |
| 9.5 | Intellectual property rights | CS | 100.0 | |
| 9.5 | Intellectual property rights | EVG | 100.0 | |
| 9.5 | Intellectual property rights | SMIME | 100.0 | |
| 9.6 | Representations and warranties | CS | 100.0 | |
| 9.6 | Representations and warranties | EVG | 100.0 | |
| 9.6 | Representations and warranties | SMIME | 100.0 | |
| 9.6.1 | CA representations and warranties | CS | 5.73 | |
| 9.6.1 | CA representations and warranties | EVG | 3.52 | |
| 9.6.1 | CA representations and warranties | SMIME | 54.8 | |
| 9.6.2 | RA representations and warranties | CS | 100.0 | |
| 9.6.2 | RA representations and warranties | EVG | 100.0 | |
| 9.6.2 | RA representations and warranties | SMIME | 100.0 | |
| 9.6.3 | Subscriber representations and warranties | CS | 31.35 | |
| 9.6.3 | Subscriber representations and warranties | EVG | 4.73 | |
| 9.6.3 | Subscriber representations and warranties | SMIME | 61.61 | |
| 9.6.4 | Relying party representations and warranties | CS | 100.0 | |
| 9.6.4 | Relying party representations and warranties | EVG | 100.0 | |
| 9.6.4 | Relying party representations and warranties | SMIME | 100.0 | |
| 9.6.5 | Representations and warranties of other participants | CS | 9.4 | |
| 9.6.5 | Representations and warranties of other participants | EVG | 100.0 | |
| 9.6.5 | Representations and warranties of other participants | SMIME | 100.0 | |
| 9.7 | Disclaimers of warranties | CS | 100.0 | |
| 9.7 | Disclaimers of warranties | EVG | 100.0 | |
| 9.7 | Disclaimers of warranties | SMIME | 100.0 | |
| 9.8 | Limitations of liability | CS | 30.93 | |
| 9.8 | Limitations of liability | EVG | 4.16 | |
| 9.8 | Limitations of liability | SMIME | 68.2 | |
| 9.9 | Indemnities | CS | 100.0 | |
| 9.9 | Indemnities | EVG | 9.76 | |
| 9.9 | Indemnities | SMIME | 96.11 | |
| 9.10 | Term and termination | CS | 100.0 | |
| 9.10 | Term and termination | EVG | 100.0 | |
| 9.10 | Term and termination | SMIME | 100.0 | |
| 9.10.1 | Term | CS | 100.0 | |
| 9.10.1 | Term | EVG | 100.0 | |
| 9.10.1 | Term | SMIME | 100.0 | |
| 9.10.2 | Termination | CS | 100.0 | |
| 9.10.2 | Termination | EVG | 100.0 | |
| 9.10.2 | Termination | SMIME | 100.0 | |
| 9.10.3 | Effect of termination and survival | CS | 100.0 | |
| 9.10.3 | Effect of termination and survival | EVG | 100.0 | |
| 9.10.3 | Effect of termination and survival | SMIME | 100.0 | |
| 9.11 | Individual notices and communications with participants | CS | 100.0 | |
| 9.11 | Individual notices and communications with participants | EVG | 100.0 | |
| 9.11 | Individual notices and communications with participants | SMIME | 100.0 | |
| 9.12 | Amendments | CS | 100.0 | |
| 9.12 | Amendments | EVG | 100.0 | |
| 9.12 | Amendments | SMIME | 100.0 | |
| 9.12.1 | Procedure for amendment | CS | 100.0 | |
| 9.12.1 | Procedure for amendment | EVG | 100.0 | |
| 9.12.1 | Procedure for amendment | SMIME | 100.0 | |
| 9.12.2 | Notification mechanism and period | CS | 100.0 | |
| 9.12.2 | Notification mechanism and period | EVG | 100.0 | |
| 9.12.2 | Notification mechanism and period | SMIME | 100.0 | |
| 9.12.3 | Circumstances under which OID must be changed | CS | 100.0 | |
| 9.12.3 | Circumstances under which OID must be changed | EVG | 100.0 | |
| 9.12.3 | Circumstances under which OID must be changed | SMIME | 100.0 | |
| 9.13 | Dispute resolution provisions | CS | 100.0 | |
| 9.13 | Dispute resolution provisions | EVG | 100.0 | |
| 9.13 | Dispute resolution provisions | SMIME | 100.0 | |
| 9.14 | Governing law | CS | 100.0 | |
| 9.14 | Governing law | EVG | 100.0 | |
| 9.14 | Governing law | SMIME | 100.0 | |
| 9.15 | Compliance with applicable law | CS | 27.31 | |
| 9.15 | Compliance with applicable law | EVG | 27.31 | |
| 9.15 | Compliance with applicable law | SMIME | 27.31 | |
| 9.16 | Miscellaneous provisions | CS | 100.0 | |
| 9.16 | Miscellaneous provisions | EVG | 100.0 | |
| 9.16 | Miscellaneous provisions | SMIME | 100.0 | |
| 9.16.1 | Entire agreement | CS | 100.0 | |
| 9.16.1 | Entire agreement | EVG | 100.0 | |
| 9.16.1 | Entire agreement | SMIME | 100.0 | |
| 9.16.2 | Assignment | CS | 100.0 | |
| 9.16.2 | Assignment | EVG | 100.0 | |
| 9.16.2 | Assignment | SMIME | 100.0 | |
| 9.16.3 | Severability | CS | 12.69 | |
| 9.16.3 | Severability | EVG | 10.69 | |
| 9.16.3 | Severability | SMIME | 56.83 | |
| 9.16.4 | Enforcement (attorneys' fees and waiver of rights) | CS | 100.0 | |
| 9.16.4 | Enforcement (attorneys' fees and waiver of rights) | EVG | 100.0 | |
| 9.16.4 | Enforcement (attorneys' fees and waiver of rights) | SMIME | 100.0 | |
| 9.16.5 | Force Majeure | CS | 100.0 | |
| 9.16.5 | Force Majeure | EVG | 100.0 | |
| 9.16.5 | Force majeure | SMIME | 100.0 | |
| 9.17 | Other provisions | CS | 100.0 | |
| 9.17 | Other provisions | EVG | 100.0 | |
| 9.17 | Other provisions | SMIME | 100.0 | |
| A | ppendix A High risk regions of concern | CS | 7.64 | Title doesn not match BRs PPENDIX A – CAA Contact Tag |
| A | ppendix A - User Agent Verification (Normative) | EVG | 6.37 | Title doesn not match BRs PPENDIX A – CAA Contact Tag |
| A | ppendix A - Registration schemes | SMIME | 30.34 | Title doesn not match BRs PPENDIX A – CAA Contact Tag |
| A.1 | organizationIdentifier | SMIME | 0.54 | Title doesn not match BRs CAA Methods |
| A.2 | Natural Person Identifier | SMIME | 1.3 | Title doesn not match BRs DNS TXT Methods |
| B | Appendix B - Sample Attorney Opinions Confirming Specified Information | EVG | 1.09 | Title doesn not match BRs APPENDIX B – Issuance of Certificates for Onion Domain Names |
| B | Appendix B - Transition of Extant S/MIME CAs | SMIME | 1.14 | Title doesn not match BRs APPENDIX B – Issuance of Certificates for Onion Domain Names |