https://groups.google.com/a/ccadb.org/g/public/c/4OuyyOD-7ng/m/1ot5MFk4AAAJ
There were no objections, questions, or comments in opposition to the request.
This email is notice that Mozilla intends to approve the inclusion of the above-mentioned root certificates from Cybertrust Japan / JCSI.
This begins a 7-day “last call” period for any final objections. Should there be any further concerns, please share them within this period.
Thanks,
Ben Wilson
Mozilla Root Store Manager
Hi Ben,
The older 2 roots were well separated with one having server auth and client auth, and the other secure mail and code signing EKS, but the new set of 3 has Server auth in all of them along with a mix of other EKUs.
When do CAs need to start providing dedicated TLS roots?
Doug
--
You received this message because you are subscribed to the Google Groups "dev-secur...@mozilla.org" group.
To unsubscribe from this group and stop receiving emails from it, send an email to dev-security-po...@mozilla.org.
To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/CA%2B1gtaZ%3DN0-G52whyR-iMD0jFiSxnBgrufMZMWkPSLfmuX0_MQ%40mail.gmail.com.
Hi Tamura-san,
Thank you for your clarification!
Doug
From: Mitsuyoshi Tamura <mitsuyos...@miraclelinux.com>
Sent: Tuesday, July 9, 2024 10:50 PM
To: dev-secur...@mozilla.org
Cc: Ben Wilson <bwi...@mozilla.com>; dev-secur...@mozilla.org <dev-secur...@mozilla.org>; Doug Beattie <doug.b...@globalsign.com>
Subject: Re: Intent to Approve Cybertrust / JCSI Japan Root Inclusions
Greetings,
We are aware of Mozilla's "Recommended Practices," that states that a single-purpose root is preferred. Among three root CAs that we are requesting, CA 12 has already changed to become a single-purpose root CA. Regarding CA14 and 15, we will also change for single purpose before start issuing certificates for subscribers.
Best regards,
Mitsuyoshi Tamura
Cybertrust Japan
P.S.
Please allow me to comment by miraclelinux.com domain that our company possess.
2024年7月9日火曜日 6:19:08 UTC+9 Ben Wilson:
Hi Doug,