Discussions - mozilla.dev.security.policy

China Internet Network Information Center (CNNIC) has applied to add the “China Internet Network Information Center EV Certificates Root” certificate, turn on the websites trust bit, and enable EV. China Internet Network Information Center (CNNIC), the state network information center of China, is a non-profit organization. CNNIC takes... more »

By Kathleen Wilson - May 30 - 7 new of 7 messages

	New wording for proposed #9
	In regard to the proposed #9 in [link] I think that some people will see "externally-operated subordinate CA" and incorrectly assume that it does not apply to them. Therefore, I propose changing the first paragraph to:... more » By Kathleen Wilson - May 29 - 9 new of 9 messages

	*SPAM* Salami
	By anesausm...@yahoo.com - May 26 - 1 new of 1 message

PathLen in cross-certificates

I do not believe that cross-certified CAs are subordinate CAs. Therefore the language below does not necessarily apply to cross-signing relationships - although in some cases the partners may want to include PathLen in their cross-certs. "All externally-operated subordinate CA certificates must include pathLenConstraint in the Basic Constraints extension, and the path length must be consistent with the contract between the CA and the subordinate CA."... more »

By Brown, Wendy (10421) - May 23 - 16 new of 16 messages

	More changes to proposed policy update
	It has been brought to my attention that the proposed item #11 in [link] is insufficient, and that we need to explicitly list where Mozilla's CA Certificate Policy overrides the CAB Forum BRs. How about the following instead?... more » By Kathleen Wilson - May 17 - 14 new of 14 messages

	Grace Periods for Mozilla CA Certificate Policy V2.1
	All, In regards to the proposed policy updates that are shown in red text here: [link] We need to determine the expectations for when CAs will need to be compliant with the updated policy, which will be version 2.1, after it... more » By Kathleen Wilson - May 16 - 13 new of 13 messages

	DigiNotar revocation date?
	Hi, We're trying to find out the reason again why DigiNotar, when they revoked their certs, inserted an invalidity date that was 1 month later than the revocation date. I seem to recall this was discussed in this group; I'd much appreciate if someone could help me out here. Thanks, Ralph By Ralph Holz (TUM) - May 9 - 7 new of 7 messages

	TURKTRUST Additional Root Inclusion Request
	TÜRKTRUST has applied to add the “TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı” root certificate, turn on the websites and code signing trust bits, and enable EV. TÜRKTRUST Information Security Services Inc. is an IT company based in Turkey. TÜRKTRUST is an authorized qualified electronic certificate... more » By Kathleen Wilson - May 7 - 11 new of 11 messages

	T-Systems Additional Root Inclusion Request
	T-Systems has applied to add the “T-TeleSec GlobalRoot Class 3” root certificate, turn on the Websites trust bit, and enable EV. T-Systems is a wholly-owned subsidiary of Deutsche Telekom AG. The request is documented in the following bug: [link]... more » By Kathleen Wilson - Apr 27 - 8 new of 8 messages

	CA/B Forum Org Reform Public Comments Posted
	Hey all, this appeared some time in the past week or so: [link] By Stephen Schultze - Apr 24 - 3 new of 3 messages

1 - 10 of 496 « Newer | Older »

XML

Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy

Account Options