Thanks, Corey. I've added this as a matter to consider in a future version of the Root Store Policy. https://github.com/mozilla/pkipolicy/issues/215
On Thu, May 21, 2020 at 7:23 PM Corey Bonnell via dev-security-policy < dev-security-policy@lists.mozilla.org> wrote: > While I realize the current topic is concerning TLS, I find it rather > surprising that Mozilla Policy does not mandate PoP for S/MIME certificate > issuance. Lack of checking for S/MIME would present more concrete security > concerns, so perhaps this should be addressed in a future update to the > Policy. > > Thanks, > Corey > _______________________________________________ > dev-security-policy mailing list > dev-security-policy@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-security-policy > _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy