How to become a certified CA/ SSL certificate provider

MAS
MAS used Ask the Experts™
on
I would like to setup a CA and get it certified by MS,Firefox, Chrome etc.

What are the procedures? I have gone through this http://www.webhostingtalk.com/showthread.php?t=855654.

Can anyone provide details?

Thanks
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Commented:
That's quite a hassle to be honest... usually reserved for companies that are making money out of signing CSR and they usually have a name in the field. Not to mention it requires some serious audiing and infosec scanning inside your company.

At any rate, this guide should give you some pointers:
Top Expert 2016
Commented:
Unless you are willing to invest $100,000 not counting equipment required. Do you currently possess a HSM like SafeNet Network HSM In fact, you are probably going to be out of pocket $250,000 and have annual $10K revalidation costs before you even get approved.  You also have to travel 2x per year to a key signing convention.  

You must be familiar with the following rfc's https://www.google.ca/search?q=certificate+authority+rfc&ie=utf-8&oe=utf-8&gws_rd=cr&ei=zKvBVrTTAciijgTK7ITgCQ

There are a number of OID's that you have to register for your policies and you must be able to prove that you are enforcing the rules in the policies to any auditor.

Expect to be at this for 5 years, before you start to get any ROI.
MASEE Solution Guide - Technical Dept Head
Most Valuable Expert 2017

Author

Commented:
Thanks

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial