WARNING! Gitlab maintenance operation scheduled for Thursday, 18 June between 19:00 and 20:00 (CET). During this time window, short service interruptions (less than 5 minutes) may occur. Thank you in advance for your understanding.
@@ -1618,7 +1618,6 @@ Ability to request the public key (if applicable). Ability to trigger an action
b) the documentation of zeroization methods employed.
- REFERENCE: ASS-REQ-6.3-05
- OBJECTIVE: Verify the PKI cannot export private or symmetric keys in plaintext form.
@@ -1632,11 +1631,8 @@ Ability to request the public key (if applicable). Ability to trigger an action
- EVIDENCE: The documentation of supported export methods.
#### 6.4 Certificate issuance
- REFERENCE: ASS-REQ-6.4-01
- OBJECTIVE: Verify the certificates issued by the certificate generation service are public-key certificates or attribute certificates whose format complies with the X.509 standard [ITU-T X.509].
@@ -1649,8 +1645,6 @@ Ability to request the public key (if applicable). Ability to trigger an action
- EVIDENCE: TODO
- REFERENCE: ASS-REQ-6.4-02
- OBJECTIVE: Verify the format of public-key certificates issued by the certificate generation service complies with the X.509 standard [ITU-T X.509].
@@ -1675,8 +1669,6 @@ Ability to request the public key (if applicable). Ability to trigger an action
b) the way issuances were requested, and the responses and issued certificates from the PKI.
- REFERENCE: ASS-REQ-6.4-03
- OBJECTIVE: Verify the PKI implements and follows a certificate profile for issued certificates.
@@ -1815,8 +1807,6 @@ verify that no certificate may be issued until acceptables values for the identi
#### 6.5 Certificate status
- REFERENCE: ASS-REQ-6.5-01
- OBJECTIVE: Verify the certificate revocation statuses to be either or both of CRLs as defined by and subject to the requirements of [ITU-T X.509], or OCSP responses as defined by and subject to the requirements of [RFC 6960].
