Mandate ISO8601/RFC3339 formatted dates in incident reports

mozilla / pkipolicy

Documents for Mozilla's PKI policies - certificate root program, etc.

47 stars 21 forks source link

Mandate ISO8601/RFC3339 formatted dates in incident reports #236

Open BenWilson-Mozilla opened 2 years ago

BenWilson-Mozilla commented 2 years ago

We received a recommendation from a member of the Mozilla community that we should mandate ISO 8601 format dates in incident reports. For example, some CAs will state in their incident report that they will be following a certain nomenclature, e.g. "DD/MM/YYYY HH:MM (All times are in MST)”, but then they don't follow that in their incident report.

RufusJWB commented 2 years ago

Since ISO8601 is a generic standard, I would recommend to mandate RFC3339 instead.

BenWilson-Mozilla commented 2 years ago

We should make this change first in the wiki - "A timeline is a date-and-time-stamped sequence of all relevant events. " here - https://wiki.mozilla.org/CA/Responding_To_An_Incident#Incident_Report