On 4/5/22 12:09 PM, Wojtek Porczyk wrote:
All this sound awfully nontransparent. Can I hear more about those "other reasons" where auditors were delisted?
The situations that happened this past year (including in 2021) were due to a business decision being made in one part of a company that ended up having unexpected consequences in another part of the company.
Is this related to (I'm just guessing) data protection?
no
conflicting regulatory requirements?
no
international santions?
no
How can I get a list of audits (and/or auditors) where those written permissions have been granted?
Mozilla policy does not currently require auditors to be listed on the ACAB'c or CPA Canada websites.
We are adding this requirement to version 2.8 of Mozilla's root store policy, and we need to ensure that we do not have to make an exception to our written policy if another company or organization makes a non-related decision that has unexpected consequences on CAs and their auditors.
Thanks, Kathleen -- You received this message because you are subscribed to the Google Groups "[email protected]" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/mozilla.org/d/msgid/dev-security-policy/ce5c63d9-6374-79c5-df34-832de99167fa%40mozilla.com.
