On 24/03/14 18:57, Erwann Abalea wrote: <snip>
The list contains root CAs that are only used for email, some that deliver Qualified Certificates, others that haven't been used yet (such as some ECC ones)
I bet their scanner didn't offer any ECDH(E) ciphers. There aren't many ECC certs out there yet, but there are some. -- Rob Stradling Senior Research & Development Scientist COMODO - Creating Trust Online _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy