Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
Transfer of QuoVadis to DigiCert
429 views
Skip to first unread message
Jeremy Rowley
Jan 15, 2019, 2:27:37 AM1/15/19
to mozilla-dev-s...@lists.mozilla.org
Hey all,
You may have seen that DigiCert is purchasing the QuoVadis PKI from WISeKey, including all public root operations. With the closing date drawing closer, I wanted to start the discussion and give the Mozilla community the notice required under Section 8 of the Mozilla CA policy.
Let me know what questions you have. I'll do my best to answer them, although many of the answers will likely have to wait until the official close date.
Jeremy
You may have seen that DigiCert is purchasing the QuoVadis PKI from WISeKey, including all public root operations. With the closing date drawing closer, I wanted to start the discussion and give the Mozilla community the notice required under Section 8 of the Mozilla CA policy.
Let me know what questions you have. I'll do my best to answer them, although many of the answers will likely have to wait until the official close date.
Jeremy
Wayne Thayer
Jan 15, 2019, 11:10:47 AM1/15/19
to Jeremy Rowley, mozilla-dev-s...@lists.mozilla.org
Thanks Jeremy.
To be clear, in this case Mozilla policy requires disclosure, but a public
discussion 'resolved with a positive conclusion' is not required because
DigiCert is already a member of our program.
The policy also requires notification of any resulting changes in the
QuoVadis CP or CPS. Jeremy, what CP/CPS changes do you anticipate making?
Will QuoVadis roots end up under the DigiCert CP/CPS?
- Wayne
> _______________________________________________
> dev-security-policy mailing list
> dev-secur...@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-security-policy
>
To be clear, in this case Mozilla policy requires disclosure, but a public
discussion 'resolved with a positive conclusion' is not required because
DigiCert is already a member of our program.
The policy also requires notification of any resulting changes in the
QuoVadis CP or CPS. Jeremy, what CP/CPS changes do you anticipate making?
Will QuoVadis roots end up under the DigiCert CP/CPS?
- Wayne
> dev-security-policy mailing list
> dev-secur...@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-security-policy
>
Jeremy Rowley
Jan 16, 2019, 12:56:47 AM1/16/19
to Wayne Thayer, mozilla-dev-s...@lists.mozilla.org
Longer term, everything is being merged into the DigiCert CPS. For Symantec, this will happen during 2019. For Quovadis, I anticipate it’ll happen in either 2019 or 2020. When we merge the CPS docs depends on when we change the data center to be compliant with the DigiCert CPS. For the short term, we plan on operating Quovadis under its existing CPS and with its existing practices.
From: Wayne Thayer <wth...@mozilla.com>
Sent: Tuesday, January 15, 2019 9:10 AM
To: Jeremy Rowley <jeremy...@digicert.com>
Cc: mozilla-dev-s...@lists.mozilla.org
Subject: Re: Transfer of QuoVadis to DigiCert
Thanks Jeremy.
To be clear, in this case Mozilla policy requires disclosure, but a public discussion 'resolved with a positive conclusion' is not required because DigiCert is already a member of our program.
The policy also requires notification of any resulting changes in the QuoVadis CP or CPS. Jeremy, what CP/CPS changes do you anticipate making? Will QuoVadis roots end up under the DigiCert CP/CPS?
- Wayne
https://lists.mozilla.org/listinfo/dev-security-policy
From: Wayne Thayer <wth...@mozilla.com>
Sent: Tuesday, January 15, 2019 9:10 AM
To: Jeremy Rowley <jeremy...@digicert.com>
Cc: mozilla-dev-s...@lists.mozilla.org
Subject: Re: Transfer of QuoVadis to DigiCert
Thanks Jeremy.
To be clear, in this case Mozilla policy requires disclosure, but a public discussion 'resolved with a positive conclusion' is not required because DigiCert is already a member of our program.
The policy also requires notification of any resulting changes in the QuoVadis CP or CPS. Jeremy, what CP/CPS changes do you anticipate making? Will QuoVadis roots end up under the DigiCert CP/CPS?
- Wayne
On Tue, Jan 15, 2019 at 12:27 AM Jeremy Rowley via dev-security-policy <dev-secur...@lists.mozilla.org<mailto:dev-secur...@lists.mozilla.org>> wrote:
Hey all,
You may have seen that DigiCert is purchasing the QuoVadis PKI from WISeKey, including all public root operations. With the closing date drawing closer, I wanted to start the discussion and give the Mozilla community the notice required under Section 8 of the Mozilla CA policy.
Let me know what questions you have. I'll do my best to answer them, although many of the answers will likely have to wait until the official close date.
Jeremy
_______________________________________________
dev-security-policy mailing list
dev-secur...@lists.mozilla.org<mailto:dev-secur...@lists.mozilla.org>
Hey all,
You may have seen that DigiCert is purchasing the QuoVadis PKI from WISeKey, including all public root operations. With the closing date drawing closer, I wanted to start the discussion and give the Mozilla community the notice required under Section 8 of the Mozilla CA policy.
Let me know what questions you have. I'll do my best to answer them, although many of the answers will likely have to wait until the official close date.
Jeremy
_______________________________________________
dev-security-policy mailing list
https://lists.mozilla.org/listinfo/dev-security-policy
westm...@gmail.com
Jan 17, 2019, 9:55:32 AM1/17/19
to mozilla-dev-s...@lists.mozilla.org
Hello,
Do you have planned to remove the QuoVadis Root certificates and use Digicert Root certificates for intermediate certs of QuoVadis or no?
Thanks.
Andrew (Russia)
Do you have planned to remove the QuoVadis Root certificates and use Digicert Root certificates for intermediate certs of QuoVadis or no?
Thanks.
Andrew (Russia)
Jeremy Rowley
Jan 17, 2019, 9:59:35 AM1/17/19
to mozilla-dev-s...@lists.mozilla.org, westm...@gmail.com
We havent discussed any root removal yet internally. However, we definitely wont be removing the ones used for qwacs.
________________________________
From: dev-security-policy <dev-security-...@lists.mozilla.org> on behalf of westmail24--- via dev-security-policy <dev-secur...@lists.mozilla.org>
Sent: Thursday, January 17, 2019 6:55:23 AM
To: mozilla-dev-s...@lists.mozilla.org
Subject: RE: Transfer of QuoVadis to DigiCert
________________________________
From: dev-security-policy <dev-security-...@lists.mozilla.org> on behalf of westmail24--- via dev-security-policy <dev-secur...@lists.mozilla.org>
Sent: Thursday, January 17, 2019 6:55:23 AM
To: mozilla-dev-s...@lists.mozilla.org
Subject: RE: Transfer of QuoVadis to DigiCert
_______________________________________________
dev-security-policy mailing list
dev-secur...@lists.mozilla.org
https://clicktime.symantec.com/a/1/TNJhIsNxFy4nlMd_sX4b48PVjFnr0kW5zix2NoSFa5E=?d=-GL3FyJ95r4OVYaTud7Y9gnigJ2YMPhaIe2FR7UY8bfXZy7nW1JBPfStPqoxh_fyTyQweUgNGm3bjtseFxBBexewRHvAxaEHY_aZRRAvFF_mp1sxD4JLzoq3P3DiGl2v_A99uFTtDEdIpkoEsJDOAld4F8qju4C9pujgny3I6nSBJIysPiJULV3Qg7WPSFm5n7G5JnPuY526O_ZWfIUBU-u97c4kdJePVr5gXI1S0tk4uZamQxOAdVUZXVnniT-q37dcWusj_0GcTn66SrxOk2Dm72OOUTwE45n1xGkOvftG6vz6ggg8iJT9Lek8mdbZnuAmdw8S5e3ZOAajLMwdDAMsIvPUcSNb7sKzv9ParpzETIpwimBeDdguKKkLdcIGBbKiowqa7H27EZTbYvQhtdjYKD9lVxn6jbP6gPc%3D&u=https%3A%2F%2Flists.mozilla.org%2Flistinfo%2Fdev-security-policy
dev-security-policy mailing list
dev-secur...@lists.mozilla.org
westm...@gmail.com
Jan 17, 2019, 10:03:31 AM1/17/19
to mozilla-dev-s...@lists.mozilla.org
"qwacs"? Sorry, what is it?
Ryan Sleevi
Jan 17, 2019, 10:06:52 AM1/17/19
to westm...@gmail.com, mozilla-dev-security-policy
Qualified Website Authentication Certificate -
https://en.wikipedia.org/wiki/Qualified_website_authentication_certificate
On Thu, Jan 17, 2019 at 10:03 AM westmail24--- via dev-security-policy <
dev-secur...@lists.mozilla.org> wrote:
> "qwacs"? Sorry, what is it?
>
https://en.wikipedia.org/wiki/Qualified_website_authentication_certificate
On Thu, Jan 17, 2019 at 10:03 AM westmail24--- via dev-security-policy <
dev-secur...@lists.mozilla.org> wrote:
> "qwacs"? Sorry, what is it?
> _______________________________________________
> dev-security-policy mailing list
> dev-secur...@lists.mozilla.org
> https://lists.mozilla.org/listinfo/dev-security-policy
> dev-security-policy mailing list
> dev-secur...@lists.mozilla.org
>
Ramiro Muñoz
Jan 17, 2019, 1:05:12 PM1/17/19
to westm...@gmail.com, mozilla-dev-s...@lists.mozilla.org
Qualified Web Authentication Certificates (QWAC) under eIDAS European
regulation.
Ramiro Muñoz Muñoz
CTO & Regulatory Standards. CISA.
+34 619746291
ram...@camerfirma.com
-----Mensaje original-----
De: dev-security-policy
[mailto:dev-security-...@lists.mozilla.org] En nombre de
westmail24--- via dev-security-policy
Enviado el: jueves, 17 de enero de 2019 16:03
Para: mozilla-dev-s...@lists.mozilla.org
Asunto: Re: Transfer of QuoVadis to DigiCert
"qwacs"? Sorry, what is it?
regulation.
Ramiro Muñoz Muñoz
CTO & Regulatory Standards. CISA.
+34 619746291
ram...@camerfirma.com
-----Mensaje original-----
De: dev-security-policy
[mailto:dev-security-...@lists.mozilla.org] En nombre de
westmail24--- via dev-security-policy
Enviado el: jueves, 17 de enero de 2019 16:03
Para: mozilla-dev-s...@lists.mozilla.org
Asunto: Re: Transfer of QuoVadis to DigiCert
"qwacs"? Sorry, what is it?
_______________________________________________
dev-security-policy mailing list
dev-secur...@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
dev-security-policy mailing list
dev-secur...@lists.mozilla.org
0 new messages