We need to be clear in our terminology. The policy itself uses "CA" (or
"issuing CA" or "subordinate CA") to refer to the organization and "CA
certificate" to refer to the certificate fairly consistently. The two
exceptions which need fixing are:
Inclusion point 5 ("additional CAs")
Inclusion point 18 ("CA hierarchy") x 2
We should update those to "additional CA certificates" and "CA
certificate hierarchy" respectively. I think that then the policy will
be internally consistent.
This is:
https://github.com/mozilla/pkipolicy/issues/40
-------
This is a proposed update to Mozilla's root store policy for version
2.4. Please keep discussion in this group rather than on Github. Silence
is consent.
Policy 2.3 (current version):
https://github.com/mozilla/pkipolicy/blob/2.3/rootstore/policy.md
Update process:
https://wiki.mozilla.org/CA:CertPolicyUpdates