Microsoft Root Certificate Program Requirements

GPTKB entity

Statements (33)
Predicate Object
gptkbp:instanceOf manual
gptkbp:appliesTo gptkb:Windows_operating_system
gptkb:Certificate_Authorities
intermediate certificates
root certificates
Microsoft products
gptkbp:availableOn https://aka.ms/rootcert
https://www.w3.org/2000/01/rdf-schema#label Microsoft Root Certificate Program Requirements
gptkbp:includes operational requirements
security requirements
auditing requirements
certificate issuance requirements
certificate revocation requirements
incident response requirements
gptkbp:latestReleaseVersion 2023
gptkbp:publishedBy gptkb:Microsoft
gptkbp:purpose define requirements for CAs to be included in Microsoft Trusted Root Program
gptkbp:relatedTo gptkb:CA/Browser_Forum_Baseline_Requirements
gptkb:Microsoft_Trusted_Root_Program
gptkbp:requires vulnerability disclosure policy
annual audit
publicly available Certification Practice Statement (CPS)
incident reporting to Microsoft
key protection measures
multi-factor authentication for CA systems
publicly available Certificate Policy (CP)
removal of non-compliant CAs
support for CRL and/or OCSP
timely notification of changes to CA operations
timely revocation of compromised certificates
compliance with Baseline Requirements (CA/Browser Forum)
gptkbp:bfsParent gptkb:Microsoft_Root_Certificate_Program
gptkbp:bfsLayer 5