dev-security-policy  

Messages by Date

• 2026/03/05 Re: Public Discussion: Approval of JPRS as an Externally-Operated Subordinate CA under SECOM Root 'Ben Wilson' via [email protected]
• 2026/02/27 Re: Notification of acquisition of VikingCloud’s Digital Certificate Business 'Rebecca Kelley' via [email protected]
• 2026/02/24 Re: Recent incidents regarding recording Baseline Requirements version Watson Ladd
• 2026/02/24 Re: Recent incidents regarding recording Baseline Requirements version Ryan Hurst
• 2026/02/24 Re: https://opensource.apple.com/source/security_certificates/ is 404 'Rob Stradling' via [email protected]
• 2026/02/24 RE: Understanding accounturi handling across manual and ACME issuance (RFC 8657 Section 5.3) 大野 文彰
• 2026/02/23 Re: Recent incidents regarding recording Baseline Requirements version Ryan Hurst
• 2026/02/23 Re: Recent incidents regarding recording Baseline Requirements version 'Trevoli Ponds-White' via [email protected]
• 2026/02/23 Re: Recent incidents regarding recording Baseline Requirements version 'Aaron Gable' via [email protected]
• 2026/02/23 Re: Recent incidents regarding recording Baseline Requirements version Ryan Hurst
• 2026/02/23 Re: Recent incidents regarding recording Baseline Requirements version 'Aaron Gable' via [email protected]
• 2026/02/23 Re: Recent incidents regarding recording Baseline Requirements version Ryan Hurst
• 2026/02/19 Re: Recent incidents regarding recording Baseline Requirements version 'Trevoli Ponds-White' via [email protected]
• 2026/02/19 Re: Understanding accounturi handling across manual and ACME issuance (RFC 8657 Section 5.3) 'Aaron Gable' via [email protected]
• 2026/02/19 Re: Recent incidents regarding recording Baseline Requirements version 'Aaron Gable' via [email protected]
• 2026/02/19 Re: Recent incidents regarding recording Baseline Requirements version 'Ben Wilson' via [email protected]
• 2026/02/19 Re: Recent incidents regarding recording Baseline Requirements version Watson Ladd
• 2026/02/19 Re: Recent incidents regarding recording Baseline Requirements version 'Gurleen Grewal' via [email protected]
• 2026/02/19 Understanding accounturi handling across manual and ACME issuance (RFC 8657 Section 5.3) 大野 文彰
• 2026/02/19 Re: Recent incidents regarding recording Baseline Requirements version 'Ben Wilson' via [email protected]
• 2026/02/19 Re: Recent incidents regarding recording Baseline Requirements version Ryan Hurst
• 2026/02/18 Re: Recent incidents regarding recording Baseline Requirements version Dexter Castor Döpping
• 2026/02/18 Re: Recent incidents regarding recording Baseline Requirements version 'Aaron Gable' via [email protected]
• 2026/02/18 Re: Recent incidents regarding recording Baseline Requirements version Watson Ladd
• 2026/02/18 Recent incidents regarding recording Baseline Requirements version 'Aaron Gable' via [email protected]
• 2026/02/12 Re: Question about a Microsoft Root Program reuqirement 'Ben Wilson' via [email protected]
• 2026/02/11 Question about a Microsoft Root Program reuqirement Peter Mate Erdosi
• 2026/02/05 Re: Updated Mozilla CT Log Policy Joe DeBlasio
• 2026/02/05 Re: Updated Mozilla CT Log Policy 'David Adrian' via [email protected]
• 2026/02/05 Re: Updated Mozilla CT Log Policy Suchan Seo
• 2026/02/02 Removal of 'non-disclosable intermediate certificates' language from Mozilla CA Wiki 'Ben Wilson' via [email protected]
• 2026/02/02 Public Discussion: Approval of JPRS as an Externally-Operated Subordinate CA under SECOM Root 'Ben Wilson' via [email protected]
• 2026/02/02 Re: HTTP request blocking by CAs for CRL, CPS, AIA caIssuers 'Roman Fischer' via [email protected]
• 2026/02/01 Re: HTTP request blocking by CAs for CRL, CPS, AIA caIssuers Matt Palmer
• 2026/01/30 Re: HTTP request blocking by CAs for CRL, CPS, AIA caIssuers Hanno Böck
• 2026/01/29 Re: HTTP request blocking by CAs for CRL, CPS, AIA caIssuers 'Roman Fischer' via [email protected]
• 2026/01/29 Question on repurposing PublicCAs to PrivateCAs Arabella Barks
• 2026/01/21 Re: Regarding the LiteSSL Certificate Issuance Authentication Vulnerability Rollin Yu
• 2026/01/21 Re: Regarding the LiteSSL Certificate Issuance Authentication Vulnerability Rollin Yu
• 2026/01/21 Re: Regarding the LiteSSL Certificate Issuance Authentication Vulnerability Roger M Lambdin
• 2026/01/21 Re: Regarding the LiteSSL Certificate Issuance Authentication Vulnerability Roger M Lambdin
• 2026/01/21 Re: Regarding the LiteSSL Certificate Issuance Authentication Vulnerability Rollin Yu
• 2026/01/21 Regarding the LiteSSL Certificate Issuance Authentication Vulnerability Roger M Lambdin
• 2026/01/20 Re: [External Sender] Re: HTTP request blocking by CAs for CRL, CPS, AIA caIssuers 'Adriano Santoni' via [email protected]
• 2026/01/20 Re: HTTP request blocking by CAs for CRL, CPS, AIA caIssuers Hanno Böck
• 2026/01/20 Re: HTTP request blocking by CAs for CRL, CPS, AIA caIssuers 'Peter Gutmann' via [email protected]
• 2026/01/19 HTTP request blocking by CAs for CRL, CPS, AIA caIssuers Dexter Castor Döpping
• 2026/01/18 https://opensource.apple.com/source/security_certificates/ is 404 Arabella Barks
• 2026/01/05 Approval of Microsec's e-Szigno TLS Root CA 2023 'Ben Wilson' via [email protected]
• 2025/12/13 Re: Ongoing CT Logging Mistakes by CAs Filippo Valsorda
• 2025/12/13 Re: Ongoing CT Logging Mistakes by CAs 'Rob Stradling' via [email protected]
• 2025/12/12 Reflections on 2025 and Areas of Focus for 2026 'Ben Wilson' via [email protected]
• 2025/12/12 Re: Ongoing CT Logging Mistakes by CAs Jeremy Rowley
• 2025/12/12 Re: Ongoing CT Logging Mistakes by CAs Andrew Ayer
• 2025/12/12 Re: Ongoing CT Logging Mistakes by CAs Alvin Wang
• 2025/12/12 Re: Ongoing CT Logging Mistakes by CAs Jeremy Rowley
• 2025/12/12 Re: Ongoing CT Logging Mistakes by CAs Andrew Ayer
• 2025/12/11 Ongoing CT Logging Mistakes by CAs Andrew Ayer
• 2025/12/03 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? 'Aaron Gable' via [email protected]
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? Arabella Barks
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? Chya-Hung Tsai
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? 'Rob Stradling' via [email protected]
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? Andrew Ayer
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? 'Aaron Gable' via [email protected]
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? Andrew Ayer
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? Arabella Barks
• 2025/12/02 Re: Why didn’t apple trust Wyvern2027h1 and sphinx2027h1 ctlog? Andrew Ayer
• 2025/11/26 Re: Subject: Confusion/questions regarding SC-088v3 'Dimitris Zacharopoulos' via [email protected]
• 2025/11/24 Re: Subject: Confusion/questions regarding SC-088v3 'Tobias S. Josefowitz' via [email protected]
• 2025/11/23 Re: Subject: Confusion/questions regarding SC-088v3 Arabella Barks
• 2025/11/23 Updated Value Statement Wiki Guidance 'Ben Wilson' via [email protected]
• 2025/11/22 Re: Subject: Confusion/questions regarding SC-088v3 'Aaron Gable' via [email protected]
• 2025/11/22 Subject: Confusion/questions regarding SC-088v3 Arabella Barks
• 2025/11/18 New CA Wiki Page: Summary of Root Inclusion Process and Evaluation Criteria 'Ben Wilson' via [email protected]
• 2025/11/11 Re: The impact of MitM attack Jin Tong
• 2025/11/10 Re: No master password on Android Ronald Crane
• 2025/11/10 Re: No master password on Android 'Phil Porada' via [email protected]
• 2025/11/10 Re: No master password on Android Dale Newton
• 2025/11/08 Re: The impact of MitM attack Henry Birge-Lee
• 2025/11/07 Re: The impact of MitM attack Schoo W3
• 2025/11/05 Notification of acquisition of VikingCloud’s Digital Certificate Business 'Rebecca Kelley' via [email protected]
• 2025/10/27 Re: New Lists of Mozilla Root CAs Ronald Crane
• 2025/10/27 Re: New Lists of Mozilla Root CAs 'Jan Schaumann' via [email protected]
• 2025/10/27 Re: New Lists of Mozilla Root CAs Filippo Valsorda
• 2025/10/27 New Lists of Mozilla Root CAs 'Ben Wilson' via [email protected]
• 2025/10/22 Updated Mozilla CT Log Policy 'Ben Wilson' via [email protected]
• 2025/10/22 No master password on Android Dale Newton
• 2025/10/18 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/18 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/18 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/18 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/18 Re: SHECA:TLS certificate key generation online Arabella Barks
• 2025/10/18 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/17 Re: SHECA:TLS certificate key generation online Arabella Barks
• 2025/10/17 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/17 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/17 Thoughts on Advancing ARI Adoption and Its Implementation in ACME Clients Arabella Barks
• 2025/10/17 RE: SHECA:TLS certificate key generation online 'Roman Fischer' via [email protected]
• 2025/10/17 Re: SHECA:TLS certificate key generation online Matt Palmer
• 2025/10/17 The impact of MitM attack Jin Tong
• 2025/10/13 Re: SHECA:TLS certificate key generation online Arabella Barks
• 2025/10/11 Re: SHECA:TLS certificate key generation online Matt Palmer
• 2025/10/10 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/07 Re: SHECA:TLS certificate key generation online Matt Palmer
• 2025/10/06 Re: SHECA:TLS certificate key generation online Bastian Blank
• 2025/10/06 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/03 Re: SHECA:TLS certificate key generation online Ryan Hurst
• 2025/10/03 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/02 Updated Root and Intermediate CA Reports on Mozilla CA Wiki 'Ben Wilson' via [email protected]
• 2025/10/01 Re: SHECA:TLS certificate key generation online Alvin Wang
• 2025/10/01 SHECA:TLS certificate key generation online Lambert Evans
• 2025/09/17 Notification of GlobalSign providing reselling services to Chunghwa Telecom 'Arvid Vermote' via [email protected]
• 2025/09/11 Updated Approval Process for Externally Operated Subordinate CAs 'Ben Wilson' via [email protected]
• 2025/09/07 Re: Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020 Andrew Ayer
• 2025/09/04 Re: Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020 Wayne
• 2025/09/04 Re: Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020 Watson Ladd
• 2025/09/04 Re: Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020 'Bas Westerbaan' via [email protected]
• 2025/09/03 Re: Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020 'Bas Westerbaan' via [email protected]
• 2025/09/03 Re: Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020 'Ben Wilson' via [email protected]
• 2025/09/03 Incident Report: Mis-issued Certificates for SAN iPAddress:1.1.1.1 by Fina RDC 2020 Youfu Zhang
• 2025/08/22 Approval of OISTE Root CA Certificate Request 'Ben Wilson' via [email protected]
• 2025/08/08 Re: [SPAM] Inquiry on "Acceptable" CA criteria, after remove of non-discrimination clause 'Ivan Buiko' via [email protected]
• 2025/08/01 Re: Inquiry on "Acceptable" CA criteria, after remove of non-discrimination clause 'Ivan' via [email protected]
• 2025/08/01 Re: Inquiry on "Acceptable" CA criteria, after remove of non-discrimination clause 'Ben Wilson' via [email protected]
• 2025/08/01 Inquiry on "Acceptable" CA criteria, after remove of non-discrimination clause 'Ivan' via [email protected]
• 2025/07/23 Re: Preview of Let's Encrypt's upcoming Root Ceremony 'Aaron Gable' via [email protected]
• 2025/07/18 Preview of Let's Encrypt's upcoming Root Ceremony 'Aaron Gable' via [email protected]
• 2025/07/14 Fwd: [Smcwg-public] Deprecation of Legacy 'Ben Wilson' via [email protected]
• 2025/06/20 Re: Limitations of aggreated CRL revocation checks 'John Schanck' via [email protected]
• 2025/06/20 Re: Limitations of aggreated CRL revocation checks 'Corey Bonnell' via [email protected]
• 2025/06/20 Re: Limitations of aggreated CRL revocation checks 'Bas Westerbaan' via [email protected]
• 2025/06/20 Limitations of aggreated CRL revocation checks Hanno Böck
• 2025/06/18 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/18 Re: Results of 2025 Roundtable Discussion Mike Shaver
• 2025/06/18 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/18 Re: Results of 2025 Roundtable Discussion Mike Shaver
• 2025/06/18 Re: Certificate Transparency is now enforced in Firefox on desktop platforms starting with version 135 Pierre Barre
• 2025/06/17 Re: Results of 2025 Roundtable Discussion Ryan Hurst
• 2025/06/17 Approval of SwissSign's Root Inclusion Requests 'Ben Wilson' via [email protected]
• 2025/06/16 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/16 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/15 Re: Results of 2025 Roundtable Discussion 'Aaron Gable' via [email protected]
• 2025/06/15 Re: Email I've received regarding Digicert Watson Ladd
• 2025/06/15 Re: Results of 2025 Roundtable Discussion Suchan Seo
• 2025/06/15 Re: Email I've received regarding Digicert Zacharias Björngren
• 2025/06/15 Re: Results of 2025 Roundtable Discussion Mike Shaver
• 2025/06/15 Re: Email I've received regarding Digicert Mike Shaver
• 2025/06/14 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/14 Re: Results of 2025 Roundtable Discussion Matt Palmer
• 2025/06/14 Re: Email I've received regarding Digicert Matt Palmer
• 2025/06/14 Re: Email I've received regarding Digicert '[email protected]' via [email protected]
• 2025/06/13 Re: Results of 2025 Roundtable Discussion Ryan Hurst
• 2025/06/13 Re: Results of 2025 Roundtable Discussion Tobias S. Josefowitz
• 2025/06/13 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/13 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/13 Re: Results of 2025 Roundtable Discussion Mike Shaver
• 2025/06/13 Re: Results of 2025 Roundtable Discussion Tobias S. Josefowitz
• 2025/06/13 RE: Results of 2025 Roundtable Discussion 'Roman Fischer' via [email protected]
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Mike Shaver
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Mike Shaver
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Tobias S. Josefowitz
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Ryan Hurst
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Tobias S. Josefowitz
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Wayne
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Tobias S. Josefowitz
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Ryan Hurst
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Tobias S. Josefowitz
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/12 Re: Results of 2025 Roundtable Discussion Tobias S. Josefowitz
• 2025/06/11 Email I've received regarding Digicert 'Amir Omidi' via [email protected]
• 2025/06/11 Re: Results of 2025 Roundtable Discussion Watson Ladd
• 2025/06/10 Re: Mitigations needed for legal action imposing delayed revocation Matt Palmer
• 2025/06/10 Re: Mitigations needed for legal action imposing delayed revocation Matt Palmer
• 2025/06/10 Re: Mitigations needed for legal action imposing delayed revocation Mike Shaver
• 2025/06/10 Re: Mitigations needed for legal action imposing delayed revocation Antonios Chariton
• 2025/06/10 Re: Mitigations needed for legal action imposing delayed revocation Matt Palmer
• 2025/06/10 Re: Mitigations needed for legal action imposing delayed revocation 'Dimitris Zacharopoulos' via [email protected]
• 2025/06/10 Re: Mitigations needed for legal action imposing delayed revocation Pierre Barre
• 2025/06/10 RE: Mitigations needed for legal action imposing delayed revocation 'Roman Fischer' via [email protected]
• 2025/06/08 Re: Mitigations needed for legal action imposing delayed revocation Seo Suchan
• 2025/06/08 Re: Mitigations needed for legal action imposing delayed revocation Matt Palmer
• 2025/06/08 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/08 Re: Results of 2025 Roundtable Discussion Watson Ladd
• 2025/06/08 Re: Mitigations needed for legal action imposing delayed revocation Suchan Seo
• 2025/06/07 Re: Mitigations needed for legal action imposing delayed revocation Ryan Hurst
• 2025/06/07 Re: Results of 2025 Roundtable Discussion Jeremy Rowley
• 2025/06/07 Re: Results of 2025 Roundtable Discussion Ryan Hurst
• 2025/06/07 Re: Results of 2025 Roundtable Discussion Zacharias Björngren
• 2025/06/06 Re: Results of 2025 Roundtable Discussion Seo Suchan
• 2025/06/06 Re: Results of 2025 Roundtable Discussion Matt Palmer
• 2025/06/06 Mitigations needed for legal action imposing delayed revocation Matt Palmer
• 2025/06/06 Re: Results of 2025 Roundtable Discussion Matt Palmer
• 2025/06/06 Re: Results of 2025 Roundtable Discussion Matt Palmer
• 2025/06/06 Re: Results of 2025 Roundtable Discussion Matt Palmer
• 2025/06/06 Re: Results of 2025 Roundtable Discussion Matt Palmer
• 2025/06/06 Re: Results of 2025 Roundtable Discussion Matt Palmer
• 2025/06/06 Re: Results of 2025 Roundtable Discussion 'Aaron Gable' via [email protected]
• 2025/06/06 Re: Approval of TrustAsia's root inclusion request 'Ben Wilson' via [email protected]

• Earlier messages