On Thursday, 18 May 2017 04:23:17 UTC+1, Aaron Wu wrote: > - DV SSL Certificates - the domain name registrar must list the applicant as > part of the WHOIS record; or effective control of the domain shall be > demonstrated by the applicant or communication satisfying BR 3.2.2.4 shall be > obtained.
Mmmm. I believe only 3.2.2.4 is acceptable to Mozilla, am I wrong here? Judging from self-assessment document, TrustCor's actual practices are all intended to be 3.2.2.4 compliant (I will examine in more detail later) but the language here suggests it might be possible for applicants to successfully validate for DV by some other means not listed in 3.2.2.4, which (again unless I'm mistaken) Mozilla considers always to be mis-issuance. _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
