This request from Symantec is to only enable the Email trust bit for the following 4 root certificates that will eventually replace the VeriSign-brand class 1 and 2 root certs that are currently included in NSS. 1) Symantec Class 1 Public Primary Certification Authority - G6 2) Symantec Class 2 Public Primary Certification Authority - G6 3) Symantec Class 1 Public Primary Certification Authority - G4 4) Symantec Class 2 Public Primary Certification Authority - G4 The G6 root certs are SHA-256, and the G4 root certs are ECC.
If there are no objections or concerns about this request, then I will recommend approval in the bug. https://bugzilla.mozilla.org/show_bug.cgi?id=833986 Thanks, Kathleen _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy