On 18/12/08 18:14, István Zsolt BERTA wrote:
I'll differ from you somewhat here. As a practical matter browser vendors are a major audience for a CA's CPS, along with the CA's auditor, possibly government agencies concerned with the CA's operations, and whoever else might care to read it. I can understand a CA issuing its CPS in the native language of the country in which it operates; that's probably the best strategy to make sure the document is properly understood by relevant government agencies and by its auditors (if they're local).
(I agree with that!)
However if a CA doesn't offer an English translation of its CPS and other relevant documents then it disadvantages browser vendors and other application software vendors who might be interested in supporting use of the CA's certificates. I don't support making it mandatory that CAs provide an English version of the CPS, but I have no problem with telling CAs that not having an English version will likely cause delays with their application.
(And I can't disagree with that!) On to István's comments:
Perhaps, making such (discriminatory) criteria mandatory could still be better than enforcing it without stating it clearly.
I don't think this criteria exists. I for one would not like it. But, there is, IMO, a need for something, and something short and simple was what I was exploring.
I would point out that all my comments are aimed at the future. I wouldn't want to slow down any current contender. You seem to meet the rules and practices, so no need to dwell on this.
Being a long-term Mozilla fan, I am really sorry to say that the same procedure at Microsoft was faster, much better defined, less ad hoc, and a lot more transparent.
OK! I think I for one would really like to hear a summary of that. I'm not trying to stir the pot, just wondering whether there is any way to improve the current Mozilla process, either up or down.
iang _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
