On 2019-10-22 7:28 μ.μ., Wayne Thayer wrote:
The CA SHALL NOT delegate validation of the domain part of
an e-mail
address.
This is
https://github.com/mozilla/pkipolicy/commit/85ae5a1b37ca8e5138d56296963195c3c7dec85a
Sounds good. This was your proposed response to solving this issue
back on May 13, so it's full circle :)
I'm going to consider this issue resolved unless there are further
comments.
Just checking whether the following is acceptable.
If a CA validates the domain mycompany.example being owned/controlled by
"mycompany", can this company delegate the issuance of S/MIME
certificates for subsection1.mycompany.example to an internal department
or a subsidiary? Does the proposed language allow this?
Thanks,
Dimitris.
_______________________________________________
dev-security-policy mailing list
dev-security-policy@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-security-policy
