Eddy Nigg (StartCom Ltd.) wrote:
Fist of all the proposal tries to structure and define SSL certificates in the Mozilla CA policy first and foremost, about something which is common practice. It nowhere says how, if and when the UI should differentiate.
Oh come on, Eddy. Are you telling us that there's any possibility that we'd do all this work and then _not_ differentiate in the UI?
I think it should. Because Mozilla doesn't have any control over it in any case! Not today, not with EV and not with this proposal!
Then what is to prevent the CA claiming it does lots of verification and then actually doing none?
Gerv _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
