Erwann Abalea wrote: > In the list, some root certificates belong to active certificate issuers > (but with different roots), so there's little security risks (I believe an > active issuer protects all its keys the same way).
Erwann, I think the opposite is true: Given the fact that there were a bunch of acquisitions in the root CA business I would expect some companies to maintain several different root CA technical infrastructures. Ciao, Michael. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy