在 2016年10月28日星期五 UTC+8下午9:23:01,wangs...@gmail.com写道: > We are not intended to cover-up anything since we had disclosed every change > to the Chinese version CP/CPS at once after the auditor reviewed. > The “ROOTCA(SM2)” CA in $1.1.3 of CPS ver4.3 is equivalent to the “SM2 ROOT > Certificate” CA in $1.1.3 of CPS ver4.1. The “Guangdong Certificate > Authority(SM2) ” CA in $1.1.3 of CPS ver4.3 is equivalent to the “SM2 CA > Certificate” CA in $1.1.3 of CPS ver4.1. We change these names in diagram in > this revision in order to show the actual CN of these certificates. > Furthermore, we only issue SM2 subscriber certificates from the subCA of > “ROOTCA(SM2)” CA.
Is SM2 acceptable in publicy-trusted CAs? I don't think so. Maybe Gerv could explain more about this. And I am wondering what can CA do if government requirement conflicts with Mozilla's policy? _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy