On Monday, April 1, 2019 at 5:21:14 AM UTC-6, Jakob Bohm wrote: [Apple Responses] _______________________________________________________________________________________
> For the benefit of the community (including possible future creation of > policies for mass revocation scenarios), could you detail: > > 1. How many of the 54,583 certificates are issued to Apple owned and > operated servers and services and how many not. [Apple] All impacted certificates were issued to Apple entities. > 2. What kinds of practical issues are delaying the replacement of > certificates on any such Apple operated servers and services, > perhaps with approximate percentages. [Apple] A number of factors have impacted replacement timelines for the large number of disparate teams affected: - work required to migrate systems to an internal, enterprise PKI - QA and change control processes - prioritization of tasks - level of automation - freeze periods associated with existing operational schedules _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy