On Thu, Mar 15, 2018 at 12:22 PM, Tom via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote:
> Should another bug be opened for the certificate issued by IdenTrust with > apparently the same encoding problem? > > Yes - this is bug 1446121 ( https://bugzilla.mozilla.org/show_bug.cgi?id=1446121) https://crt.sh/?id=8373036&opt=cablint,x509lint > Does Mozilla expects the revocation of such certificates? > > Yes, within 24 hours per BR 4.9.1.1 (9) "The CA is made aware that the Certificate was not issued in accordance with these Requirements or the CA’s Certificate Policy or Certification Practice Statement;" Mozilla requires adherence to the BRs, and the BRs require CAs to comply with RFC 5280. https://groups.google.com/d/msg/mozilla.dev.security.policy/ > wqySoetqUFM/l46gmX0hAwAJ > > - Wayne _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
