JDK-8275493 : Adding Certigna ROOT CA Certificate
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 17
  • Priority: P4
  • Status: Closed
  • Resolution: Duplicate
  • OS: generic
  • CPU: generic
  • Submitted: 2021-10-18
  • Updated: 2021-10-19
  • Resolved: 2021-10-19
Description
A DESCRIPTION OF THE PROBLEM :
Certigna is French commercial CA.
The ANSSI (French National Security Governmental Agency) recommend this CA. It is used on many governmental websites (eg elysee.fr, service-public.fr, ...) and for API endpoints.

This root CA is included in Microsoft Windows, Linux and Firefox trusted CA.

Informations about this CA can be found on https://www.certigna.com/autorites-de-certification/
  - Certification policy : https://politique.certigna.fr/en/PCcertignarootca.pdf
  - Certification practice statement : https://politique.certigna.fr/en/DPCcertignarootca.pdf
  - der file : https://autorite.certigna.fr/certignarootca.der
  - crl file : https://crl.certigna.fr/certignarootca.crl
Comments
There is already an outstanding issue open for adding the Certigna root CAs to the JDK and it is in progress.
19-10-2021
Moved to JDK for further evaluations.
19-10-2021