Common CA Database

Home | Policy | For CAs | For Auditors | For Root Stores | Resources

CCADB Usage Terms

CCADB Data Usage Terms

The data in this repository is licensed under the Community Data License Agreement – Permissive, Version 2.0 (CDLA-2.0 Permissive).

Key Terms:

  1. You may use, modify, and redistribute the data freely, provided that you comply with the terms of the CDLA-2.0 Permissive license.
  2. Attribution to the Common CA Database (CCADB) is required when redistributing or using this data in derived works.
  3. The names and trademarks of the CCADB or any contributors may not be used to endorse or promote products derived from this data without prior written permission.

For the full license text, visit the CDLA website.

CCADB Root Store Operator Usage Terms

As permitted by the Bylaws of the CCADB, and in addition to any other requirements set out therein, the CCADB Steering Committee sets some usage terms and rules for using the CCADB, as follows.

Meetings

Root Store Operators (Members) of the CCADB may meet by teleconference or at face-to-face meetings for the purpose of discussing improvements or changes to the operation of the CCADB. Such discussions should not include competitively-sensitive information.

Customizing the CCADB

A Root Store Operator (Member) may make customization changes that only impact itself. Before being applied to the production instance of the CCADB, changes will be reviewed and tested by the CCADB Steering Committee, including to ensure that the changes will not negatively impact any of the other Members or the CCADB. The CCADB Steering Committee will either approve or decline the proposed changes. If the changes are approved, then the changes may be applied to the production instance of the CCADB. If the changes are denied, then the CCADB Steering Committee will provide an explanation, and the Member may submit the customizations again after addressing the feedback.

Members may request customization changes that impact shared data and interfaces. The CCADB Steering Committee will review, and approve or deny such requests. If the request is approved, the CCADB Steering Committee will prioritize the requested changes, and work with the Members to design and test the changes in a sandbox environment before applying them to the production instance of the CCADB.

Appropriate Data

The following types of data may be stored in the Common CA Database, as it pertains to the management of Root Store Programs. Aside from contact information, data uploaded to the Common CA Database is made generally available to the public:

  • CA certificate data;
  • CA Owner information (CA name, company website, physical address, etc.);
  • Contact information for CA Owner Points of Contact (name, business email address, business phone number);
  • Auditor information (Auditor name and location, auditor qualifications);
  • Contact information for Auditors (name, business email address, business phone number);
  • URLs to public-facing sites and documents;
  • URLs to internal-facing sites and documents (provided the URLs are not confidential);
  • Root-store-specific status and decisions regarding root inclusion/change requests; and
  • Dates and comments relating to CA certificates.

Members shall not store the following types of data in the CCADB:

  • Confidential data
  • Personal (as opposed to business) contact information for individuals