UnixTime

Research Note

Certificate Authority and Certificate Review

Use this review for internal or external certificate authorities, public-key certificates, TLS certificates, signing certificates, and certificate lifecycle checks.

On this page

When to use this

Use this review for internal or external certificate authorities, public-key certificates, TLS certificates, signing certificates, and certificate lifecycle checks.

Review checklist

  • Certificate authority is approved and trusted.
  • Certificate owner is identified.
  • Certificate purpose is documented.
  • Expiry date is monitored.
  • Private key protection is verified.
  • Revocation process is defined.
  • Unauthorized replacement risk is controlled.
  • Third-party CA obligations are documented.

Certificate review table

Certificate/CA Purpose Owner Expiry Private key protection Revocation method Issue/gap Action
TBD TBD TBD TBD TBD TBD TBD TBD