On 03/18/2009 04:39 PM, Rolf Lindemann:
There are a small number of external CAs that have been signed by our root. They are not part of a formal audit but our Director of Security does audit and review their CPS'. There are no requirements for the external entities to undergo third party audits unless we decide that it is necessary. We have the right to impose this requirement in our contract with the external entities.
Again thanks for your reply. Can we identify those external CAs and get the relevant pointers to the CPS (or I'll look them up if needed).
-- Regards Signer: Eddy Nigg, StartCom Ltd. Jabber: start...@startcom.org Blog: https://blog.startcom.org -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
