What is the rationale for waiting until March 20th for revocation given that the issue was noticed on March 7th?
-Tim > -----Original Message----- > From: dev-security-policy <dev-security-policy-boun...@lists.mozilla.org> On > Behalf Of Bruce via dev-security-policy > Sent: Friday, March 15, 2019 4:59 PM > To: mozilla-dev-security-pol...@lists.mozilla.org > Subject: Incident Report - Entrust Datacard issued certificates with the > incorrect Organization Name > > On March 7, 2019, Entrust Datacard discovered that SSL certificates with the > wrong Organization value were issued to a customer. The investigation was > completed 15 March 2019. > > Details of the incident report can be found here, > https://bugzilla.mozilla.org/show_bug.cgi?id=1535735. > > All certificates will be revoked by 20 March 2019. > > Thanks, Bruce. > _______________________________________________ > dev-security-policy mailing list > dev-security-policy@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-security-policy
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy