Paul Hoffman wrote, On 2008-07-18 20:00: >> 2. Import that root CA cert. > > .... restart FF (at least 3)...
should not be necessary. Might be necessary to see the cert in the UI, due to possible UI issues, but is not required in NSS. >> I hope you trust the ECC implementation in NSS. > > I do, but not unconditionally. If Comodo had used NSS to create the > cert, there could have been an error that you did not detect. I am > much happier that it verifies on both Firefox and IE because they use > different ECC libraries. The ECC code is FIPS validated, for what it's worth. _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto