While I understand the Mozilla OSS desire to provide many options, I think that CA/trust certificates must meet a minimum standard.
Unfortunately, there is a global mish-mash of local standards for regulating certificate authorities and this may be an exhausting and impractical exercise for the Mozilla team to arbitrate. Microsoft's approach has been to require an amended form of the WebTrust for Certification Authorities as the "gatekeeper" to getting in the Windows root store. This standard was created by the AICPA and CICA (Canadian CPA org) and has been adopted by many countries around the world. It is also a commercial standard and has been adopted by most of the active commercial certificate authorities (the audit is sufficient that it removes the need for most CA corporate customers to conduct seperate audits of the CA operations; they feel comfortable relying upon the WebTrust review). Microsoft does not charge a fee for this inclusion, but does require the CA to prove its commercial credentials (ie no enterprise CAs, must serve multiple customers that would merit global distribution in Windows). More info is here: http://www.microsoft.com/technet/security/news/rootcert.mspx. I would like to see a clear path to how I can get my CA certificates in Mozilla!! Stephen QuoVadis CA, www.quovadis.bm "Duane" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] > > > Feel free to revive the discussions in the newsgroup, not here. Thanks. > > Any idea where things are at with Frank he's been a little quite on the > subject... > > -- > Best regards, > Duane > > http://www.cacert.org - Free Security Certificates > http://www.nodedb.com - Think globally, network locally > http://www.sydneywireless.com - Telecommunications Freedom > http://happysnapper.com.au - Sell your photos over the net! _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
