On Thursday, September 7, 2017 at 1:23:17 AM UTC-7, Buschart, Rufus wrote: > I have a question regarding the meaning of: > > > * The latest versions of the WebTrust and ETSI audit criteria are now > > required, and auditors are required to be appropriately qualified.
I will delete that sentence in the blog post, because I don't think it's really necessary. > > Will you still accept ETSI TS 102 042 audits or does it mean, you will only > accept ETSI EN 319 411-1 audits? Both are acceptable according to BRG 8.4. mozilla.org/listinfo/dev-security-policy ETSI TS 102 042 audits are still allowed as per https://www.mozilla.org/en-US/about/governance/policies/security-group/certs/policy#audit-criteria Thanks, Kathleen _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy