GlobalSign has submitted requests to include a replacement root certificate for an already-included root certificate (same public key, new expiry date) and to enable it and a second GlobalSign root for EV:
https://bugzilla.mozilla.org/show_bug.cgi?id=406794 https://bugzilla.mozilla.org/show_bug.cgi?id=406796 Kathleen Wilson has been gathering information for these requests; I've attached copies of her reports to each of the bugs. Also, GlobalSign just completed its WebTrust EV audit and got it published. I've updated the GlobalSign entry on the pending list accordingly: http://www.mozilla.org/projects/security/certs/pending/#GlobalSign (Note that I checked in GlobalSign-related updates for this list just a few minutes ago, so it may take an hour or two for them to show up on the site.) I think we now have all the information we need to start the first public comment period for this request, so I'm formally declaring it open. Based on prior experience I'm going to fine-tune things a bit and set this first comment period at a week long, unless we need more time. So my tentative plan is to make a preliminary decision on these requests late next week. Frank P.S. Note that I think this is the first request for which we're using the new information checklist at http://wiki.mozilla.org/CA:Information_checklist Thanks go to Kathleen for all her work in collecting the information! -- Frank Hecker [EMAIL PROTECTED] _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
