You can find an explanation of Mozilla's enforcement mechanism on our wiki [1]. When a CA fails to comply, the immediate action upon discovery is the creation of an incident bug and the expectation that the CA will file an incident report [2].
- Wayne [1] https://wiki.mozilla.org/CA/Maintenance_and_Enforcement [2] https://wiki.mozilla.org/CA/Responding_To_An_Incident#Incident_Report On Mon, Dec 23, 2019 at 9:24 AM Tomas Hidalgo Salvador via dev-security-policy <dev-security-policy@lists.mozilla.org> wrote: > Hi Wayne, > > What could be the consequences of a given CA (Certification Authority) not > complying with this new policy? Thanks! > > _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy